Hamza Fawad
Offensive Security Specialist
Phone: +923318686858 Email: hamzafawad2@gmail.com LinkedIn: https://www.linkedin.com/in/hamza-fawad-cybersec
Career Summary
Certified Web Penetration Tester, specialized in Python scripting at NCCS-UETP lab from (Sep '21 to Aug '22).
After Python scripting different projects on web security, I secured a paid job as a cybersecurity instructor at NCCS-UETP lab.
During my year-long NCCS-UETP lab, I gained Tech and non Tech knowledge Skills in cybersecurity and ethical hacking.
Certified IT Support Specialist at, Khushal Khan Khattak University Karak (July-Dec 2023) in Computer Lab.
Cybersecurity Internship at Trillium Information Security Systems (TISS, Jan-Mar 2023).
Networking knowledge, and 2+ years Python scripting and JavaScript for web testing.
Work Experience
I'm an experienced cybersecurity and penetration tester. As an online mentor, I specialize in teaching advanced offensive
security techniques, including website security evaluations, vulnerability assessments, exploitation procedures, and
comprehensive vulnerability reporting.
Education
BSc in Computer Science (Khushal Khan Khattak University, Karak, 2016-2020).
Skills
PenTest Tools: Burp Suite,SQLMap,CeWL,Hydra, Wfuzz, DirBuster,FFUF, Nuclei, Nmap, Metasploit, Nitko.
Web Vuln: Injection flaws, Security misuse vul, Security Misconfiguration, API Misconfiguration vul, Broken Authorization vul
Searching Techniques: Google Dorking, Shodan, GitHub, OSINT, AI-Tools, ExploitDB, Hacker1.
Networking: TCP/IP, UDP, DNS, VPN, OSI Model, Network Concepts, Network Devices.
Programming Languages: Python, C++, Bash scripting, HTML, CSS, JavaScript, MYSQL.
Bug Bounty: Finding vulnerabilities, reporting responsibly, team collaboration, web and network security testing.
Computer Skills: Operating Systems, Troubleshooting, Virtualization, MS Office 365, Data Recovery, Anti-Malware.
Licenses
Kamyab Jawan Program Certificate in Cyber Security (NAVTTC, June 2021-Dec 2021).
Internship in Python Scripting & Cyber Security (NCCS-UETP Lab, Sep 2021-Aug 2022).
Kali Linux Certified Professional (KLCP, 2022 Oct-Dec).
Certified IT Support Specialist at, Khushal Khan Khattak University Karak (July-Dec 2023).
Trillium Information Security Systems Internship in Cybersecurity (2023 Jan-Mar).
TryHackMe Advent of Cyber Challenge (2023 Nov-Dec).
Certified Web Penetration Tester (Web Pentester 2023 May-Jul).
Projects
IP Scanner (Python GUI): CMS, Ports, & Vulnerabilities.
PHP Web Server Spy: Detects Software, Ports & Geolocation (Ethical Use).
Python WAF Hunter: Detects Firewalls & Spoofing (Security Testing).
Ongoing Learning
Practice on OWASP TOP 10 vulnerabilities, gain real-world experience. With new security tools and techniques.
Regularly read cybersecurity news, blogs, and research papers. And capture The Flag (CTF) competitions.
Generate python scripting for web application security testing.
Future Planning
Certified Information Systems Security Professional (CISSP), Ethical Hacking Certified (EHC), CompTIA Network+
Spoken Languages
English (Conversion), Urdu (fluent), and Pashto (fluent).
Portfolio link
https://dev-my-roots.pantheonsite.io/
GitHub: https://www.github.com/hamzafawad Address: Islamabad Pakistan
