Mahmoud.

Penetration Tester

Experienced Penetration Tester specializing in web, mobile, and network security assessments, with a proven track record of identifying critical vulnerabilities for leading organizations including Pinterest, Verisign, and Dell.

Resume

About Me

Experienced Penetration Tester specializing in comprehensive security assessments across web applications, mobile platforms, and network infrastructure. Proven track record of identifying critical vulnerabilities for leading organizations including Pinterest, Verisign, and Dell through responsible disclosure programs. Proficient in advanced penetration testing methodologies aligned with OWASP and MITRE ATT&CK frameworks. Actively engaged in continuous skill development through competitive platforms and hands-on security research, with strong technical expertise in Python, web development, and offensive security tools.
Language Proficiency:
Arabic Native
English C2 — Proficient
Russian C1 — Advanced
Technologies & Skills:
TCP/IP Windows Linux Network Security Active Directory OWASP Red Team MITRE ATT&CK Privilege Escalation Vulnerability Assessment Exploit Development Presentation Skills Problem Solving System Administration Burp Suite Metasploit Cobalt Strike Sliver Ghidra Nmap Wireshark BloodHound Impacket SQLMap Nuclei ffuf Python Bash JavaScript C/C++ Assembly SQL

Experience

Penetration Tester, Intern - Bastion Cybersec Solutions
May 2024 - Sep 2024

Executed comprehensive security assessments across application and network infrastructure, identifying and documenting critical vulnerabilities in enterprise environments.

  • Achieved Top 5 ranking among 100 participants in internal CTF competitions, demonstrating advanced penetration testing capabilities and technical expertise.
  • Performed comprehensive security assessments on web applications and network systems, identifying vulnerabilities including authentication bypasses, privilege escalation vectors, and injection flaws.
  • Executed advanced exploitation techniques achieving root-level access on both Linux and Windows environments, demonstrating proficiency in system-level security testing.
  • Developed and delivered technical presentations on security vulnerabilities and exploitation methodologies, contributing to team knowledge sharing and security awareness initiatives.
  • Successfully completed intensive internship program with certification, validating practical penetration testing competencies.

Education

Sep 2022 - Jul 2026
Bachelor of Software Engineering
Tomsk State University

Courses & Training

2024
ISC2 Candidate
ISC2
2024
Jr Penetration Tester
TryHackMe
2024
CompTIA Linux+
CompTIA
2023
IBM Cyber Threat Intelligence Certification
IBM
2023
Penetration Testing, Incident Response and Forensics
IBM
2023
SecurityBlue Blue Team Junior Analyst
SecurityBlue
2023
CCNA
Cisco
2023
CompTIA Pentest+
CompTIA

Certifications

Jr Pentester Completion
Junior Penetration Tester certification from TryHackMe, demonstrating proficiency in penetration testing methodologies and techniques.
Cyber Threat Intelligence by IBM
IBM certification in Cyber Threat Intelligence, covering threat analysis, intelligence gathering, and security assessment methodologies.
SecurityBlue Blue Team Junior Analyst
SecurityBlue Team Junior Analyst certification, demonstrating skills in blue team operations, incident response, and security monitoring.