CISO / White-Hat Hub

ERMAL GASHI · SECURITY AWARENESS · COMMUNITY TOOLS
live feed ON last refresh: --:--
Ermal Gashi

Ermal Gashi

Head of Information Security @ BKT Kosova

White-hat cybersecurity, CISO mindset, public awareness & defense.

📍 Pristina, Kosovo · 10+ yrs in IT & Security
#Threat-Intel #Vulnerability-Mgmt #Pentesting #IAM & SecOps

Contact • Signals

📧egashi94@gmail.com 🌐ermalgashi.com 🔗LinkedIn Profile

Skills

Threat Intelligence Vulnerability Assessment Red/Blue Team Collaboration Security Governance IAM Incident Response
Mission: enable a safer digital ecosystem through ethical hacking, security culture and clear, practical guidance for both teams and community.

Security News Feed

auto-updated
Latest headlines around cybersecurity, breaches, vulnerabilities & infosec discussions.
Loading news…

Domain / IP Intel Lookup

RDAP / WHOIS (read-only)
Quick OSINT: type a domain or IPv4. Data comes from public RDAP endpoints.
Enter a domain or IPv4 address and click Lookup.

Free Security Tools

no API keys required
A curated set of public tools useful for defenders, blue teams, and curious builders.
SSL Labs – SSL/TLS Server Test Check HTTPS config & ciphers
DNSlytics DNS / IP / ASN information
Have I Been Pwned Email breach exposure
urlscan.io Public URL scanning & screenshots
Abuse.ch Feeds Malware / botnet / ransomware IOCs
crt.sh Certificate Transparency search
AlienVault OTX Open Threat Exchange indicators
Shodan Search devices on the Internet
VirusTotal URL / file reputation
Hack The Box Hands-on labs (free tier)
TryHackMe Guided cybersecurity labs
Kali Tools Catalog of common security tools
OWASP Top 10 Web vulnerabilities awareness
NCSC (UK) Guidance & best practices

Learn & Contribute

white-hat only
Use these spaces to learn, practice, and share knowledge in a legal & ethical way.
r/netsec Security news & research
r/cybersecurity Career & defensive sec discussion
OverTheWire Wargames for fundamentals
PortSwigger Academy Free web security labs
CISA Advisories & alerts
CVSS Calculator Score vulnerabilities consistently
security.txt Best practice for vuln disclosure
NVD Official vulnerability database

Threat Stats (CISA KEV)

Number of CISA Known Exploited Vulnerabilities based on the public KEV catalog. Switch between per-year and top-vendors view. If the feed is unreachable, a static sample is shown.
Loading KEV highlight…

Security Console

commands: help, about, links, time, clear
Lightweight client-side console for quick info & navigation. No remote execution.
>

Local File Analyzer (Sandbox-lite)

runs entirely in your browser
Analyze a file locally: hashes, entropy & basic heuristics. The file never leaves your device. For deeper dynamic analysis, you can upload the same file to an external sandbox via the links below.
⚠️ Do not execute suspicious files on your own machine. This analyzer only inspects bytes and metadata in-browser; it does not execute the file.
No file loaded. Choose a file above to analyze it locally.
For full dynamic sandboxing, you can upload the same file to:
Built as a white-hat / community-first hub. All tools used in a legal & ethical context only.