Penetration Tester | Security Analyst | OSCP
With more than 3.5+ years’ experience as an Information Security Analyst, I am adept in risk assessment, planning, and mitigation strategies. I have deep knowledge of Security Assessment Methodology to identify vulnerabilities in Network, Cloud, API, Web, and Mobile Applications.
- Why did you hire me for this project?
► Hall Of Fame: Google | Microsoft | Apple | Facebook and Many Other Leading Companies
► Completed 500+ Websites and Mobile Application Penetration Testing
► Working with Middle East Government and 5+ Global Clients to Provide Securities.
► Certified Ethical Hacker, Security Researcher, and Bug Bounty Hunter
► Implemented WAF in AWS to Prevent Future Attacks
- I have provided Penetration Test, Vulnerability Assessment services, including professional reports for companies in the world complying with:
► CREST standards
► Offensive Security (OSCP) standards
► OWASP Top 10 Vulnerability
► Application Security Verification Standard 4.0 (ASVS 4.0)
► CWE Top 25 Most Dangerous Software Errors
► ISO 27001 Penetration Testing
► Payment Card Industry Data Security Standard (PCI DSS)
► General Data Protection Regulation (GDPR)
► Common Vulnerability Scoring System (CVSS)
► Open Source Security Testing Methodology Manual (OSSTMM)
- I have some cybersecurity certifications, including:
► Certified Ethical Hacker (CEH)
► Offensive Security Certified Professional (OSCP)
- The deliverable will be a professional Penetration Testing report which includes:
► Executive Summary
► Assessment Methodology
► Type of Test (Blackbox, Greybox, and Whitebox)
► Risk Level Classifications
► Detailed Engagement Data
► Port Scanning Results
► Result Summary
► Table of Findings
► Detailed Findings. Each finding listed within the report will contain CVSS score, Issue Description, Proof of Concept, Remediation, and Reference sections
► Tool List (Acunetix, Nessus, BurpSuite Professional, Nmap, Metasploit Framework, OpenVAS, Netsparker, Mimikatz, SQLmap, Nikto, Zaproxy, Gobuster, etc