Thomas MacKinnon

Cyber Security | Project Managment

Home

Welcome to my website!

This is my little corner of the internet to store all things about me, with all my projects and professional documents. I hope to later expand to cover more aspect of my life, such as blog detailing various hobbies of mine and the adventures I've embarked on.

About Me

I am fresh Masters graduate looking to find my first job in Cybersecurity, with a keen interest in Blue Teaming. I spent my Academic years primarily in Dundee, Scotland, studying at the Unviersity of Abertay, giving me the opportunity to participate in their Hacking Society and SecuriTay (the biggest student run security conference in Europe). Ethical Hacking was a joy to learn, through indepth labs and very engaging practical assignments which taught me so much and really instilled a passion for Cybersecurity.

My friend Stephen and I at our graduation, featured on APU's Instagram

For my Master I chose to study in Kuala Lumpur, Malaysia, at the Asia Pacific University(APU). Living in Asia was a dream, being able to experience the culture and cuisine as a local opened my eyes, whilst meeting amazing people from all over the world. APU offered one of the best Cybersecurity courses in Asia, and had a fully functioning Security Operations Center for students to learn and even work in to gain real life experience. I loved the experience so much I knew it was what I wanted to do my career.

Making Éclairs to test our baking skills

Whilst studying I was also able to travel a lot of South East Asia and Oceania, visiting some of my friends homes in countries like Indonesian and Australia, and taking home with me my favourite recipes to learn at home. I am very passionate about cooking, specifically baking, as I feel a beautiful dessert brings the most joy to a room of guests. I am also keen on exploration of my own homeland, hiking the scenic routes is a big reason why I love this country, espeically when I can bring my dog along.

Projects

Personal | Academic

Here are some of my write ups of my projects completed throughout my Bachelors and Masters Degrees, covering a wide variety of topics in Cyber Security. Please feel free to read whatever interests you.

Malware Analysis Reports

Wannacry - The infamous Ransomware that shutdown the world in 2017. I found many suspicious details, including the kill switch, and was able to use registery editing to get past anti-analysis techniques.
Notely installer - A suspicous installer for the notely application, hiding several malicious files that gain persistance and attempt to download a second stage payoad. Dynamic Yara rules were written to catch pre and post detonation.
Silly Putty - a Reverse Shell trojan, disguising as the Putty application, a very simple malware made to be a challenge for the TCM course.
SikoMode - an information stealing malware, that uses novel techniques to exfiltrate data whilst avoiding detection.

Masters Projects

Masters Thesis - Deep dive into ways threat actors could use RFID cards to bypass security and avoid facial recognition, with a recommended solution to fix these issues.
Security Operations Center and Incident Response - Reviewed various SIEM solutions on the market and then simulated attacks to APU's SOC to then counter.
E-Investigations - Research into Profiling and Machine learning to put forward a better suited Digital Forensics Methodology for phishing cases.
Digital Forensics and Cyber Security Tools - An investigation into a cybercriminals files, following forensic practices to reveal evidence.
Security Audit and Assessment - Audit Checklist for Nuclear Facilities with recommendations for fixes as per ISO guidelines.
Security Audit and Assessment - Literature Review on the Security of Nuclear Facilities.
Vulnerability Assessment of Public Healthcare - Evaluating the current vulnerabilities in modern healthcare institutions and proposing solutions.
Digital Forensics Prerequisite - An analysis of current Digital Forensics Methodologies and producing a recommendation.
Password Strategy to counteract Data Breaches - A review of password stragetigies to apply for added security without technological upgrades, completed as part of the prerequisite program for APU.

Undergraduate Projects

Bachelors Dissertation - An automated Penetration Testing tool that does a thorough review of a network and provides a detailed DOCX report to the testers email address upon completion.
An Evaluation of Homemade VPN versus Commercial options - Building my own VPN and comparing it with commonly used paid for services like NordVPN, producing interesting results.
CVE Investigation and Implementation - Learning how to use the MITRE CVE database and exploiting a CVE on an emulated Android phone.
Mobile Digital Forensics Essay - An essay on Mobile forensics for Android devices, discussing the challenges faced in properly finding evidence in a forensically safe way.
Mobile Digital Forensics Investigation - An extensive investigation into retrieving evidence from various mobile communications.
System Internals and Cybersecurity - Building a physicl door with facial recognition using AWS and a Raspberry Pi board.
Engineering Resilient Systems - A review of Machine Learning algorithms to provide the best recommendation for the client.
Exploit Development - Creating Exploits for a vulnerable music playing software, using buffer overflows, ROP chains, and more.
Network Evaluation and Security Report - Using Ethical Hacking techniques, tools, and procedures, to map a network and report security issues.
Penetration Test Report - A Penetration Test into a realistic organisations network, using EternalBlue to gain a reverse shell and Admin priviledges.
Digital Forensics Court Report - a group investigation into a suspects computer image, uncovering damning evidence in a forensically safe manner.