2025 Recap

Thumbnail


2025 has been a wonderful year, here is my recap for this year. 

 

January

  1. Jan 1st: Created hkohi.ca website to actively contribute to infosec community in Canada and beyond
  2. Jan 11th: Began Mission Cyber Sentinel with the aim of securing a combination of open-source projects that impact over 250,000+ digital assets through collaboration with ethical hackers from the UK & Romania
  3. Jan 12th: Published 10 behavior-analysis malware TTPs used by a pro-Taliban hacking group for evasion & cyber espionage (now deleted)

 

February

  1. Feb 6th: Released Zeroday Factory, an AI & SAST Assisted vulnerability analysis scanner that works with every modern web development framework such as Flask, Laravel, Rails and others

 

March 

  1. March 16th: Started a cybersecurity mentorship program where clients pay by making a donation to a Canadian food-bank or homeless shelter
  2. March 19th: Began volunteer work with Hackfest Canada for creating CTF challenges
  3. March 22nd: Got invited to SchlopShow podcast to talk about my hacking methodology and demonstrate bug hunting on open-source software

 

May 

  1. May 5th: Enrolled into Fanshawe college and began a 2 year business diploma program
  2. May 19th: Created Cyber Mounties website (cyberm.ca), a peer reviewed cybersecurity training platform available in French & English & also registered it with Ontario Government under "CYBER MOUNTIES CANADA INC."

 

June 

  1. June 18th: Identified and reported a vulnerability in Royal Bank Canada (RBC) that allowed users to steal money with cheques
  2. June 19th: Created Delta Obscura with Luke Smith, the international vulnerability research arm of Cyber Mounties

 

July 

  1. July 17th: Delta Obscura secured up to 446,000+ digital assets - safeguarding information of an estimated number of 1.2 billion users from cyber-attacks
  2. July 29th: Achieved the rank of "Ninja" on HackFest; Canada’s largest cybersecurity event

 

August 

  1. August 6th: Published a free course on Cyber Threat Intelligence with AI & data scraping; this course is available in English, French, German, Spanish and Portuguese
  2. August 13th: Achieved the rank of "Competent" on VulDB, a community where security researchers submit vulnerabilities and get awarded CVEs and points that elevate their ranking among hackers

 

October

  1. Oct: Created a VDP program for *.cyberm.ca & rewarded people with HoF & bounties starting from $20 (CAD)
  2. Oct: Began DKTP mission through Delta Obscura: The Delta Knowledge Transfer Program (DKTP) develops educational materials such as Capture the Flag (CTF) labs to train aspiring cybersecurity professionals on identifying real-world vulnerabilities (e.g. CVEs) discovered by Delta Obscura.
  3. Oct: Began cyber diplomat initiative: Working with developers, vendors and cybersecurity researchers from across 100+ countries to identify vulnerabilities in software or hardware, report them responsibly and build long-term relations with vendors; 12/100 countries done
  4. Oct: Provided on-site support at Quebec City for Hackfest 2025 event; provided remote support for CyberChess, an event that was featured on Canada.ca as part of Canada-Latvia relations by DND, Canada's Department of National Defense.

 

November

  1. Nov: Through Delta Obscura, established a partnership with a Romanian based CTF team (omniCYBR) to provide them with CTF labs
  2. Nov: Earned CPTS certification
  3. Nov: Delta Obscura began Mission Vector 0: Mission Vector Zero is dedicated to uncovering high-impact vulnerabilities in 30+ targets, each demonstrably affecting over 250,000 users or digital assets, and meeting the severity threshold of CVSS 6.0 or VRT P1-P3 classification.

 

December

  1. Dec: Delta Obscura secured (through vendors) an estimated 1,351,707,900 users from cyber-attacks and 544,779 digital assets
  2. Dec: Cyber Mounties now has these subdomains: delta.cyberm.ca (team), academy.cyberm.ca (academy), 0den.cyberm.ca (scrapped & easily searchable list of GitHub repos for CVE hunting),
  3. Dec: Delta Obscura now has a total of 10 members from these countries: Canada, United Kingdom, Romania, Pakistan, United States, Ghana, Poland,
  4. Dec: Cyber Mounties and associates play in 3 arenas: cyber, threat intel, CTF lab exports
  5. Dec: Collaborated with [REDACTED] on mapping IRGC-backed APT groups;
  6. Dec: Began collaborating with "Challenge the Cyber" CTF event from the Netherlands to provide CTFs for their 2026 event
  7. Dec: Got credited for a total of 28+ CVEs by a combination of MITRE, VulDB, GitHub & Apache Software Foundation between Jan 2025 to Dec 2025


Plans for 2026

2025 was a great year but the journey is far from over. Here are a few upcoming projects/goals:

  1. cvedoc.cyberm.ca (a service to check CVE impact & identify fraudulent CVEs)
  2. services.cyberm.ca (mentorship, tools and penetration testing services offered by Delta Obscura members)
  3. rocketry.cyberm.ca (a comprehensive archive on everything related to rocketry available in English & Hebrew; making barrier to entry easier for amateur rocketry)
  4. Get certified in CRTO, BSCP & CompTIA Security+
  5. Complete my college diploma in business administration
  6. Work towards Canadian Armed Forces Reserves (applied in Dec 2025)
  7. Automate 0day hunting through source code review & AI-assisted recon
  8. Contribute exploits to MetaSploit Framework
  9. Sell cybersecurity services such as application security, physical penetration tests and red teaming services
  10. Sell adversarial simulation tools & courses focused on modern ways malware spreads
  11. Get into bug hunting and perhaps Synack Red Team or Yogosha Strike Force
  12. Get employed in cybersecurity 

 

That's basically the gist of it, there is going to be a lot of team work and cross-border collaborations. 

Love you all...

Stay safe and let's begin a new year!

Posted on: December 29, 2025 09:23 PM