Open to opportunities

يوسف محمد

@0001514

Message

Cybersecurity professional specializing in penetration testing, bug bounty discovery, and API security.

Saudi Arabia

Message

What I'm looking for

I seek hands-on penetration testing or security research roles where I can discover vulnerabilities, guide remediation, and grow in application/API security.

I am a cybersecurity professional with three years of hands-on experience in bug bounty hunting and penetration testing, focused on strengthening organizational security postures.

I've reported 80+ verified vulnerabilities across global programs, discovered sensitive information disclosures, and ranked as a top hacker in Sudan while contributing to private HackerOne programs.

At Resecurity I conducted comprehensive penetration tests and vulnerability assessments on web applications, authored detailed security reports, and collaborated with cross-functional teams to provide actionable remediation guidance.

I hold an eLearnSecurity eCPPTv2 certification, ApiSec API Penetration Tester, and AppSec Practitioner (CAP), and I continuously apply OSINT, digital forensics, and scripting to improve testing efficiency and deliver measurable security outcomes.

Experience

Work history, roles, and key accomplishments

Current

Bug Bounty Hunter

Current

HackerOne

Jul 2021 - Present (4 years 3 months)

Reported 80+ verified vulnerabilities across global programs, identifying critical web, API, and infrastructure issues and strengthening organizational security through responsible disclosure.

API Security Burp suite OSINT Risk Analysis Responsible Disclosure

Penetration Tester

Resecurity

Dec 2022 - Aug 2023 (8 months)

Conducted comprehensive web application penetration tests and vulnerability assessments, authored detailed remediation reports, and collaborated with cross-functional teams to mitigate security risks.

Penetration Testing Burp suite Nmap Sqlmap Vulnerability Assessment Report Writing