About
No bio added yet
Skills & Expertise (16)
Work Experience
Associate Information Security Consultant
Secureyes Infusing Security
Nov 2024 - Present
Performed systematic identification of vulnerabilities in systems, applications, and networks. Use automated tools and manual techniques to generate comprehensive reports. Simulated real-world attacks to exploit vulnerabilities in systems, applications, and APIs. Document findings with detailed proof-of-concept (PoC) and recommend mitigation strategies. Strong understanding of cybersecurity principles and frameworks (e.g., OWASP, NIST, ISO 27001). Proficiency in tools like Nessus, Metasploit, Burp Suite, or similar. Performed manual testing on web applications, API security testing, and Mobile security Testing. Hands-on experience with web application and API security testing.
Cyber Security Consultant
Mitroz Technologies
Jan 2022 - Jan 2023
Penetration Testing (PT) on Servers, Endpoints, and Network Devices. (Using Nessus Professional, Nmap). Perform manual testing on web applications and API security testing. Web application scanning uses a Static and dynamic approach using Burp Suite Pro and other internal tools based on OWASP top 10. Find the vulnerabilities and report to the appropriate team also, provide the solution to the team on how to patch that vulnerability. Providing Threat intelligence reports and risk matrix every month for a better understanding of risk in the attack surface.
QA Engineer
Credentek software & consultancy
Jan 2020 - Dec 2021
Responsibility for smoke testing, reviewing and providing feedback on test cases, preparing daily execution reports. Prepared a Defect Profile Document and shared the same with the Development Team and tracked the status of the bugs till they were closed (REDMINE).
Senior Executive
Ixambee
Aug 2023 - Aug 2024
Executed manual and automated penetration to discover and validate critical web application vulnerabilities including XSS, CSRF, and logic flaws, providing actionable remediation guidance. Performed reconnaissance, scanning, exploitation, and validation with the Burp Suite, Nmap, SQLMap, and Kali Linux toolsets to assess attack surface and exploitability. Responsible for patch management and bug fixing of the web application. Managing web application security and coordinating between the application development team and stakeholders to make sure the vulnerabilities are mitigated before the grace period.
Education
Bachelor of Engineering - BE, Computer Science - DY Patil College of Engineering
2014 - 2019 · Afghanistan
Certifications
Junior penetration Tester(eJPT)
INE · 2026
Certified Ethical Hacker (CEH ISO/IEC 27001:2022, V12)
· 2026
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (16)
Click a skill to find developers with the same skill
