Giza, Al Jizah, Egypt
As a dedicated Cybersecurity Specialist with over three years of experience, I specialize in Penetration Testing across web, mobile, and network environments. My expertise extends to a deep understanding of networks, programming, and operating systems, allowing me to assess and fortify security postures comprehensively. My professional journey has equipped me with a robust skill set in identifying vulnerabilities and implementing effective countermeasures to protect organizational assets. I am proficient in the latest penetration testing methodologies and tools, consistently delivering actionable insights to enhance security frameworks. I am focused on advancing my capabilities towards Red Teaming, aiming to simulate advanced persistent threats to understand better and combat sophisticated attack vectors. My goal is to continually evolve as a cybersecurity professional, staying ahead of emerging threats and contributing to a more secure digital landscape. I am passionate about continuous learning and development, and I am committed to expanding my expertise to provide cutting-edge security solutions. Let's connect and explore how I can contribute to your cybersecurity initiatives.
• Conduct PCI DSS assessments including INVA, INPT, ENPT, ASV scanning, and segmentation validation. • Performed firewall rule base reviews and evaluated network security controls for regulatory compliance. • Participated in red teaming engagements simulating Active Directory attacks, lateral movement, and post-exploitation techniques. • Executed penetration tests on thick client, API, and web applications using manual and automated methodologies.
• Gained hands-on experience in penetration testing across mobile, web, and internal environments. • Focused on advanced topics such as Active Directory exploitation, mobile application security, and exploit development. • Practised real-world attack scenarios including OAuth misconfiguration, insecure storage, and privilege escalation techniques.
• Designed and developed Capture The Flag challenges in various categories, including Web, Cryptography, Forensics, and Reverse Engineering. • Ensured challenges demonstrated real-world vulnerability concepts and provided clear walkthroughs and validation mechanisms.