“1% better everyday.”

That’s the core philosophy behind Tamago Security.

Hi, I’m TamaGorengs. I’ve been in the cybersecurity industry for over 3 years, starting my journey in the trenches of a SOC (Security Operations Center) before transitioning to the offensive side as a Penetration Tester.

Why this blog?

In this industry, the learning never stops. I’ve spent countless hours grinding through certifications like OSCP, PNPT, and CPTS. I’ve spent even more hours staring at terminal screens, debugging exploits, and reading other people’s writeups.

I created this blog to document that journey. To give back to the community that helped me learn.

What to expect

No fluff. Just technical content I wish I had when I started:

  • CTF Writeups: Detailed walkthroughs of HackTheBox and TryHackMe machines (once they retire).
  • Red Team Tradecraft: Notes on Active Directory attacks, web exploitation, and evasion.
  • Blue Team Insights: How my background in SOC helps me bypass detections today.
  • Tooling: Reviews and configs for the tools I use daily.

Join me

This blog is my personal knowledge base, open to the world. Whether you are a beginner looking for guidance on certifications or a seasoned pentester looking for a specific technique, I hope you find something useful here.

Let’s break things.

“The quieter you become, the more you can hear.”