If you've put in the hours on TryHackMe or HackTheBox but still aren't getting callbacks, the problem is probably not your skills — it's how those skills show up on paper.
A lot of resumes I've seen (including my own old ones) say things like:
- "Completed 50 HackTheBox machines"
- "Found vulnerabilities in CTF challenges"
Recruiters skim past this. It's vague. It doesn't tell them anything about what you can actually do on day one.
Compare that to:
- "Identified privilege escalation via misconfigured sudo permissions and SUID binary abuse, mapped to MITRE ATT&CK privilege escalation tactics"
Same experience, completely different read. The second one tells a hiring manager you understand attack techniques AND speak the language SOC teams use.
I've been building a small tool that helps generate this kind of resume content automatically from your THM/HTB profile, certs, and project notes. It's in early access here: https://cybercv.vercel.app/
If anyone's been job hunting in cybersecurity recently, curious what's worked (or not worked) for you.
Top comments (0)