Gustavo Daniel Cortez

Detail-oriented cybersecurity analyst specialized in honeypot deployment, penetration testing, vulnerability, and forensic analysis. Skilled in Nmap scanning, Metasploit exploitation, Wireshark traffic analysis, and forensic investigations. Familiar with SIEM integration, Python automation, and security audit reporting.

• Leveraged ModSecurity alerts to categorize and analyze SQLi, XSS, and RCE attempts, identifying the top 3 attack vectors across 2,000+ events.
• Correlated Filebeat logs by severity to surface critical system errors, reducing mean time to detection by 30%.
• Deployed Cowrie honeypot on port 2222, logging 500+ SSH login attempts and SQLMap scans; integrated with Elasticsearch and Kibana for real-time threat visualization.

• Performed a full-scope penetration test on VPN, DMZ, and internal network segments.

• Identified and exploited 5 Critical, 4 High, and 4 Medium vulnerabilities, including XML-RPC Deserialization RCE, MVEL Script RCE in Elasticsearch, Pass-the-Hash attacks, SNMPv1 misconfiguration, and RDP credential interception.

• Achieved SYSTEM-level compromise via Metasploit modules, credential harvesting, Impacket tools, and lateral movement techniques.

• Executed pivoting into restricted subnets, exfiltrated sensitive credentials, and demonstrated real-world attack chains from initial access to domain persistence.

• Produced a comprehensive security audit report with CVSS scoring, CWE references, remediation guidance, and network topology visualization.

• Built forecasting models (Exponential, Hyperbolic, Harmonic) for petroleum production, supporting single and two-period decline analyses.
• Developed a Flask web interface enabling users to upload datasets and generate on-demand reports; exported results to Excel for stakeholder review.

• Designed a scalable real-time messaging backend handling up to 100 concurrent users using Eventlet and Flask-SocketIO.
• Secured message transmission with environment-based secret management and CORS configuration; ensured data integrity via AES-256 encryption.

• Programmed a CLI and guided Python wrapper for Nmap with features including OS fingerprinting, custom NSE script execution, decoy options, and timing templates (T0–T5).
• Automated output normalization (JSON, XML, grepable), enhancing integration with downstream analysis tools; ensured root/sudo compliance for privileged scans.