Egypt
I am a cybersecurity professional focused on penetration testing, web application security, bug bounty, and network security. I hold the eWPTX certification and have reported 200+ vulnerabilities on bug bounty platforms including HackerOne and Bugcrowd. My hands-on experience includes web penetration testing, OWASP Top 10, Burp Suite, Nessus, Nmap, vulnerability discovery, and technical reporting. Alongside cybersecurity, I have practical network engineering experience with FortiGate firewalls, VPN, NAT, VLANs, Active Directory, Windows Server, VoIP systems, and infrastructure troubleshooting. I am open to opportunities in Penetration Testing, VAPT, Web Security, Network Security, and Cybersecurity.
Design, implement, and support network infrastructure solutions for multiple client environments. Key responsibilities: • Configure and deploy FortiGate firewalls, including security policies, NAT, VPN, access control, and network segmentation. • Implement switching environments using VLANs, trunking, and STP for enterprise networks. • Deploy and configure FortiSwitch core and access switching environments. • Deploy and optimize wireless networks using Cisco Access Points. • Support Active Directory migration and deploy new Domain Controllers using a new forest setup. • Configure VoIP systems using Avaya call center solutions and Grandstream devices. • Implement centralized print management solutions using PaperCut. • Deliver project lifecycle activities including planning, deployment, configuration, troubleshooting, and post-deployment support.
Perform bug bounty testing focused on web application security, vulnerability discovery, and responsible disclosure. • Reported 200+ vulnerabilities on bug bounty platforms including HackerOne and Bugcrowd. • Tested web applications against OWASP Top 10 vulnerabilities. • Performed reconnaissance, subdomain enumeration, vulnerability discovery, and validation. • Used tools including Burp Suite, Nmap, Nessus, and related security testing tools. • Prepared clear vulnerability reports including reproduction steps, impact explanation, evidence, and remediation guidance.
Completed Cyber Security Level 2 training at Orange Digital Center Egypt, focused on ethical hacking, web application security, and bug bounty fundamentals. • Practiced OWASP Top 10 testing and common web application vulnerabilities. • Used Burp Suite to analyze HTTP requests and test for vulnerabilities. • Practiced injection attacks, XSS, SQL Injection, and vulnerability discovery techniques. • Worked on subdomain enumeration and bug bounty testing methodology. • Improved practical web security skills through hands-on exercises and real-world testing scenarios.
Completed a hands-on penetration testing internship focused on web application security, practical labs, and vulnerability reporting. • Practiced web penetration testing through PortSwigger and TryHackMe labs. • Identified and exploited common web vulnerabilities including XSS, CSRF, and SQL Injection. • Improved skills in reconnaissance, vulnerability discovery, and manual testing. • Practiced scripting for automation during security testing tasks. • Prepared vulnerability reports with clear findings, reproduction steps, and technical explanation.