I'm David B. Cox, a Junior Cloud Pentester and Offensive Security Professional, pivoting from healthcare IT into AI red teaming and cloud exploitation.
My work focuses on building real-world tools, AI-powered workflows, and documenting my process through hands-on labs (HTB, TryHackMe, and TCM Security).

🔗 Portfolio: cloudpunchr.dev
🧠 AI + Red Teaming Tools: Local Ollama + Zettlr integration
☁️ Focus: AWS Security, Cloud Misconfigurations, and Offensive AI

• ☁️ AWS Security & Cloud Misconfigurations
• 💥 Offensive Security Certifications (eJPT, PNPT, OSCP)
• 🤖 AI-Augmented Recon and Prompt Engineering (Ollama + Zettlr)
• 🧰 Writeups & tooling from hands-on labs (HTB, TryHackMe)

Role: Cybersecurity / Threat Intelligence Analyst Intern — Vulnerability Management & Security Operations
Duration: July 2025 – Present

• Vulnerability Management Program Implementation
• Programmatic Vulnerability Remediations (PowerShell & Bash)

• Creation of a Mini SOC and Honeynet

• Threat Hunting Detection Use Cases

• Achieved a 100% reduction in critical vulnerabilities through automated remediation.
• Conducted vulnerability assessments and DISA STIG compliance audits using Tenable across Windows & Linux.
• Built PowerShell scripts for vulnerability management and reporting automation.
• Performed threat hunting using Microsoft Sentinel & Defender for Endpoint.
• Created Sentinel dashboards and KQL queries to detect ransomware, brute-force, and data exfiltration events.
• Developed Defender detection rules to automate host isolation and investigation.
• Reduced brute-force login incidents by 100% via inbound NSG/firewall rule tuning.

Core Technologies: Tenable.io · Microsoft Sentinel · Defender for Endpoint · PowerShell · Azure · KQL · STIG

🎓 Master’s in Cybersecurity Strategy & Information Management — The George Washington University
🎯 ICCA (INE Certified Cloud Associate), CC (ISC2 Certified in Cybersecurity)
📘 Pursuing eJPT, PNPT, OSCP, AWS Security Specialty

🌍 Portfolio
💼 LinkedIn
💻 GitHub
🐦 @dcpentester