Back to candidate list
Default Avatar
Candidate Name
Senior Penetration Tester
Pakistan
Summary

A dedicated & skilled cybersecurity specialist backed by 5 year of personal & 3+ year of solid industrial experience in Penetration Testing, Ethical Hacking & Offensive Security, specializing in Web Application, API, Network (AD) & Cloud (AWS) Penetration Testing. I help organizations secure their most critical assets by simulating real-world attacks. With a sharp offensive mindset & client-first approach, I turn risk into resilience delivering strategic, ethical security testing that builds long-term trust. My goal is always to leave systems stronger & clients fully informed.

❖ Pwned & Owned 4-CVE's
🔸CVE-2025-67586
🔸CVE-2025-67985
🔸CVE-2025-67986
🔸CVE-2025-62140

❖ Internationally Recognized Certifications
🔸Certified Red Team Operator (CRTO)
🔸Certified Ethical Hacker (CEH)-Practical
🔸Certified ISO/IEC 27001:2022 Lead Auditor
🔸Certified AppSec Practitioner (CAP)
🔸Certified Cloud Security Practitioner-AWS (CCSP-AWS)
🔸OSCP (Loading ...)

❖ Recognitions & Vulnerabilities Reported
🔸NASA – (NASA Hall of Fame & Letter of Recognition) awarded for multiple P1 vulnerability disclosures
🔸Microsoft – Credited for discovery of medium-severity XoR SQL-injection
🔸DeepSeek AI – Acknowledged for responsible disclosure of critical 0-click full ATO
🔸20+ Global Enterprises & Startups – Assisted in identifying & mitigating critical web & infrastructure vulnerabilities

❖ CTF (Capture The Flag)
➥ International CTFs:
🔸BlackHat MEA-2024 Final (Riyadh, Saudia Arabia)
🔸ASIS 2025 Final
➥ National Level CTFs: 2023, 2024 Digital Pakistan Cybersecurity Hackathon

❖ Area of Expertise:
➥ Penetration Testing & Vulnerability Assessment (VAPT) --> (Web - API's - Network - AWS - OT/ ICS)
➥ Red Teaming & Social Engineering
➥ Cybersecurity Consultancy, IT-Audits
➥ Compromise Assessments & Configuration Reviews
➥ Source Code Reviews (Web Apps, Mobile APK, APIs)
➥ Configuration Review & VAPT (Switches - Firewalls)
➥ Windows & Linux Infrastructure Exploitation
➥ Virtualization: VMware, VirtualBox
➥ Strong VAPT Reporting, Documentation & Communication Skills
➥ Project & Team Management in Offensive Security
➥ Security Tools & Frameworks:
🔸Parrot OS – Web & Network Exploitation Tools
🔸Kali Linux – Burp Suite, Nmap, Nessus, BloodHound, Wireshark, Metasploit, Gobuster, WPScan, SQLmap etc.
🔸Windows – PowerShell, WSL, Firewall, Registry, Forensics

Work experience
01/09/2025
Web API Penetration Tester
01/03/2024
01/09/2025
Penetration Tester
01/12/2023
01/03/2024
Cyber Security Consultant
Education & certifications

Bachelor of Science - BSSE
Software Engineering
Open to relocate
Skills
Cybersecurity Penetration Testing Vulnerability Assessment Kali Linux Metasploit Burp Suite Wireshark Nmap Python Scripting AI in Cybersecurity IoT Security Wireless Security CEH Nessus Qualys Tenable MITRE ATT&CK Framework Tactics, Techniques, and Procedures (TTP) PowerShell MITM Attack Simulation PCAP Analysis DNS Traffic Analysis API Security Testing OWASP Top 10 Remediation Active Directory Security Windows Hardening C++

You need to log in as an employer to view full candidate details.

Connect with us

© State Government of Victoria 2026.

TalentConnect platform is powered by Cturtle.