Summary

In my role as an Offensive Security Engineer at IP Protocol INC and Cyber Security Mentor at SecWalls, I bring over 3 years of dedicated experience in the cybersecurity field, with a specialization in offensive security tactics. My expertise lies in conducting comprehensive vulnerability assessments and penetration tests across diverse environments, including web, mobile, and network infrastructures. I employ a combination of manual and automated tools, simulating cyber-attacks to enhance system and network security. In addition to my role. I am particularly proud to have been listed in the Hall of Fame for Aruba, Zynga, and the USA Federal Reserve for my contributions in identifying and reporting critical vulnerabilities. Furthermore, my dedication to excellence has been recognized on the Bugcrowd platform, where I was listed as one of the top hackers for Q1 2021. One of my significant accomplishments is achieving industry-recognized certifications, including OSCP. My academic background in Computer Science complements my passion for deciphering and solving complex cybersecurity challenges. Experienced in various environments:

- Banking Sector

- Performed dozens of web application Pen testing/hardening tasks (Black/White box).

- Deep network penetration testing.

- Mobile Penetration Testing.

- WIFI Penetration testing.

- Familiar with multiple scripting languages along with many of penetration testing tools.

Certifications

Offensive Security Certified Professional (OSCP)

Certification ID: 73559255

Certified Red Team Expert (CRTE)

Certification ID: 77553958

Certified Red Team Operator (CRTO)

Certification ID: brBveJVgRq2OAsCFr2Bq0A

eLearnSecurity Certified Penetration Tester eXtreme (eCPTXv2)

Certification ID: 8804905

eLearnSecurity Web application Penetration Tester eXtreme (eWPTXv2)

Certification ID: 6736829

eLearnSecurity Certified Professional Penetration Tester (eCPPTv2)

Certification ID: 5074734

Work Experience

IP Protocol INC

Penetration Tester

April 2022 - Now

Key Responsibilities

  • Performing thorough application security engagements across Web applications, APIs, thick clients and mobile applications and deep knowledge across both black box and grey box penetration testing.
  • Simulate security breaches to test a system's relative security.
  • Work with clients to determine their requirements from the test, for example the number and type of systems they would like testing.
  • Delivering penetration testing engagements alone and as part of a team.

Egirna Technologies

Offensive Security Engineer

January 2021 - March 2022

Key Responsibilities:

● Collaborating with external vendors to perform Penetration Tesing on their environment.

● Leading Red Team Operation.

PaySafe Group

Penetration Tester

June 2020 - December 2020

Key Responsibilities :

● Performing dozens of Penetration Testing on any Product related to PaySafe Group.

● Making tools to break into security-protected applications and networks to find vulnerabilities.

Bugcrowd

Bug Hunter

March 2020 - Now

Key Responsibilities:

● Discover security vulnerabilities and weaknesses in organization systems.

Freelancer

Penetration Tester

March 2019 - Now

Key Responsibilities

● Assessing different client’s security architecture by performing web, Network & Active directory penetration testing.

Skills

  • Technical Skills

    ⮊ Red Teaming

    ⮊ Penetration Testing

    ⮊ Active directory attacks and defenses.

    ⮊ Skilled Penetration testing for network & web applications

    ⮊ Bug Hunting

    ⮊ Solid background in scripting (Python, PHP)

    ⮊ Building virtual hacking environments.

    ⮊ Web development knowledge.

    ⮊ Solution Expertise: Application Security Testing Software (Burp Suite) - Vulnerability Management (Nessus,Acunetix,Netsparker) - Red teaming Frameworks (Metasploit , Cobalt-Strike , Covenant)

  • Soft Skills

    Public Speaking, Report Writing, Team Player

Achievements

One of the best Security Researchers in Bugcrowd

Helping and protecting more than **50 **organizations by finding many critical security vulnerabilities, and within a year I managed to get 60k dollars from discovering vulnerabilities and became one of the top **500 **security researchers on the Bugcrowd platform.

Listed In Bugcrowd MVP Q1 2021 (Seaman)

https://www.bugcrowd.com/blog/announcing-our-mvps-for-q1-2021/

I got Listed in** Bugcrowd MVP Q1 2021** and My name is **Seaman **

Bugcrowd MVP Q1 2021: https://www.bugcrowd.com/blog/announcing-our-mvps-for-q1-2021/

**What is the Bugcrowd MVP Program? **

Bugcrowd MVP program recognizes hackers that consistently bring their A-game across Bugcrowd bounty programs. Reaching MVP status is no small feat as it requires them to stay at the top of the priority percentiles for the entire quarter. At the end of each quarter, we review all of our platform submissions to see how each Researcher compares to the rest of the crowd. Those that make it to the top of the quarter become an MVP and are sent exclusive swag rewards to celebrate their achievement.

I got listed into federal-reserve's Hall of Fame

https://hackerone.com/federal-reserve/thanks?type=team

I got listed into USA-federal-reserve's Hall of Fame after discovering more than one critical security vulnerability. my name is (Seaman000)

I got listed into Zynga's Hall of Fame

I got listed into Zynga's Hall of Fame after after discovering critical security vulnerability that allowed me to access to admin panel and make changes on the website and users and I got a good bounty :)

Hall of Fame at Aruba Networks, Atlassian,TikTok, OPPO and +40 more

Courses

Red Team Ops: Adversary Simulation & Red Team Operations.

zeropointsecurity.co.uk

eLearnSecurity Web application Penetration Tester

ElearnSecurity

eLearnSecurity Certified Professional Penetration Tester

eLearnSecurity

Pentester Academy Attacking and Defending Active Directory

Pentester Academy

Offensive Security Wireless Attacks (OSWP) Course

Offensive Security

ZDResearch: Advanced Web Hacking

ZDResearch

Mobile Application Penetration Tester

eLearnSecurity