Mohamed Mahmoud Ibrahim
Giza
Summary
Mohamed Computer Science student at October 6 University with 2 years of self-study in web, network, and Active Directory penetration testing. with hands-on experience in web, network, and Active Directory penetration testing. Active bug bounty hunter skilled in real-world attack scenarios like BAC, IDOR, and privilege escalation. Passionate about offensive security and continuously learning through platforms like TryHackMe and HackTheBox.
Overview
1
1
year of professional experience
1
1
Certification
Work History
Penetration Testing Internship
WE INNOVATE
08.2024 - 09.2024
- Company Overview: ZeroSploit MEA - Hybrid
- Participated in an intensive cybersecurity bootcamp specializing in web and mobile penetration testing, gaining hands-on experience in identifying and exploiting vulnerabilities.
- Applied knowledge of the OWASP Top 10 vulnerabilities in real-world penetration testing projects to assess and improve security.
- Collaborated with a team to solve complex security challenges and develop effective mitigation strategies.
- Enhanced proficiency in using tools like PortSwigger for web security testing and various platforms for mobile application security assessments.
- ZeroSploit MEA - Hybrid
Internship
Digital Egypt Pioneers Initiative - DEPI
06.2024 - 09.2024
- Company Overview: Global Knowledge - Hybrid
- A unique opportunity for professional growth in cybersecurity, with emphasis on both web and network penetration testing.
- Engaged in critical tasks such as vulnerability assessments and exploitation testing of web applications and network infrastructures.
- Gained in-depth experience in cybersecurity through hands-on vulnerability assessments and penetration testing of web applications and networks.
- Global Knowledge - Hybrid
Freelance Penetration Tester
04.2025 - Current
- Conducted a targeted security assessment of a video streaming service, identifying insecure key disclosure mechanisms in encrypted media delivery.
- Intercepted and decrypted .ts video segments by capturing .key requests and responses using Burp Suite and browser instrumentation.
- Developed a Python automation tool using Selenium to dynamically monitor traffic, extract encryption keys, and streamline the decryption workflow.
- Employed OpenSSL and FFmpeg to decrypt and reconstruct full media files, demonstrating the full impact of the vulnerability.
- Delivered a comprehensive report to the client detailing the vulnerability, technical findings, reproduction steps, and remediation guidance.
Education
Bachelor of Information Technology - Information System
October 6 university
Skills
- Web & API Security
- Network & Active Directory Attacks
- Privilege Escalation
- Bug Bounty & Reporting
- Tools & Platforms
- Scripting & Automation
- Operating Systems & Soft Skills
Certification
- EJPT
- Web penetration testing course
- Penetration tester path from hackthebox academy (Not finished yet)
- CompTIA Network+ content course
- Bash scripting course
- Python course
Languages
Arabic (Native)
English (Fluent)
Personal Information
Title: Penetration Tester
Timeline
Freelance Penetration Tester
04.2025 - Current
Penetration Testing Internship
WE INNOVATE
08.2024 - 09.2024
Internship
Digital Egypt Pioneers Initiative - DEPI
06.2024 - 09.2024
Bachelor of Information Technology - Information System
October 6 university
Similar Profiles
Dezirae ButlerDezirae Butler
Transaction Processor at Innovate Auto FinancingTransaction Processor at Innovate Auto Financing
ROWENA JUMAI OGBETUOROWENA JUMAI OGBETUO
General Manager at Innovate 1 Pay LimitedGeneral Manager at Innovate 1 Pay Limited
Akanksha AgarwalAkanksha Agarwal
Quality Analyst at UKRI, Innovate UKQuality Analyst at UKRI, Innovate UK
Abeer KamalaldeenAbeer Kamalaldeen
Data Engineer at DGteraData Engineer at DGtera
ADHAM HOSSAMELDIN ZAKARIAADHAM HOSSAMELDIN ZAKARIA
Volunteer at Founder of a Student Club at the University (leadership and Event Organization).Volunteer at Founder of a Student Club at the University (leadership and Event Organization).