🏆 Achievements, Certifications & Skills
A snapshot of my journey in cybersecurity — from certifications to technical skills and community involvement.
🛡️ Certifications
CAPEN — Certified Application Penetration Testing Expert </div>
Issued by: SecOps Group
✅ Focus: Web application security, real-world pentesting methodology
eJPT — eLearnSecurity Junior Penetration Tester
Issued by: INE
✅ Focus: Networking, web app attacks, basic exploitation
🔗 View Certificate
eWPTX — eLearnSecurity Web App Penetration Tester eXtreme
Issued by: INE
✅ Focus: Advanced web app pentesting, bypass techniques, WAF evasion
🔗 View Certificate
IBM — Cyber Security & Forensics Graduate
Issued by: IBM
✅ Focus: Cybersecurity fundamentals, digital forensics, and secure system design
🔗 View Certificate
🧠 Skills
🔐 Application & API Security
- Web & API Penetration Testing
- Access Control Testing (BAC, IDOR, privilege escalation)
- OAuth/OpenID testing
- Business Logic Bugs
🧰 Tools & Techniques
- Burp Suite, Nmap, FFUF, Postman
- JWT attacks,SSRF chains
- Recon: Subfinder, Amass, Shodan, gau, httpx, nuclei
🌐 Cloud & DevSecOps
- Security assessments on AWS, Azure, and GCP (ongoing)
- Familiar with IAM misconfigs, exposed buckets, metadata service abuse
🧑💻 Programming & Scripting
- Languages: Python, Go, JavaScript, Bash
- Custom scripts for automation, recon, and exploitation
🔧 Other Skills
- Writing professional pentest reports
- Vulnerability triage and PoC creation
- Secure development best practices
💻 Community & Contributions
- Active bug bounty hunter on HackerOne and Bugcrowd
- Published writeups on InfoSec Writeups
- Sharing insights, bugs, and tips on LinkedIn and my Blog
🎯 Goals Ahead
- OSCP (in progress)
- Expand expertise in Cloud & Kubernetes Security
“Security is not a product, but a process.” – Bruce Schneier
Let’s connect! Reach out if you’d like to collaborate.