C|PENT-certified penetration tester & active bug bounty hunter. 50+ vulnerabilities disclosed including 3 High-Level on X/Twitter. OWASP Top 10 | Burp Suite | Metasploit | Kali Linux. Seeking a security role to grow as a researcher.
test site
@hafiz
Security researcher and bug bounty hunter focused on high-severity vulnerability discovery.
What I'm looking for
I’m a results-driven Security Researcher and Bug Bounty Hunter with hands-on experience in vulnerability assessment and web application hacking. I’ve built a track record of identifying high-severity flaws in major platforms through core networking, system administration, and penetration testing methodologies, with a strong focus on responsibly disclosing security vulnerabilities.
As an Independent Security Researcher (HackerOne & Bugcrowd), I’ve submitted 50+ vulnerability reports across OWASP Top 10, and I maintain 4 separate active researcher accounts for specialized security testing. I’ve discovered and responsibly disclosed 3 High- Vulnerability Level vulnerabilities, including logic flaws and authentication bypasses, while conducting deep assessments of web endpoints to surface business logic and infrastructure risks.
Before fully focusing on security research, I worked as an Office Assistant & IT Support, managing technical office tasks and maintaining records using MS Office—streamlining document retrieval times by 20% and maintaining a database of 1,000+ records with 99% accuracy. I’m also advancing through training such as C|PENT (Certified Penetration Testing Specialist), and DACS (covering CEHv9, CCNA Basic, and MCSA Basic modules) to strengthen my web hacking and penetration testing foundation.
Experience
Work history, roles, and key accomplishments
Independent Security Researcher
HackerOne & Bugcrowd
Jan 2024 - Present (2 years 6 months)
Conduct vulnerability assessment, web application hacking, and infrastructure penetration testing while responsibly disclosing findings. Reported 50+ vulnerabilities (including OWASP Top 10 and authentication-related issues) and identified 3 high-severity issues on X (formerly Twitter).
Office Assistant & IT Support
Iqra Madina-tul-Ilam Islamic Center
Jan 2022 - Present (4 years 6 months)
Provided office and IT support, including technical office task management, record keeping, and document retrieval process improvements. Streamlined retrieval time by 20% and maintained a database of 1,000+ records with 99% accuracy.
Education
Degrees, certifications, and relevant coursework
Certified Penetration Testing Specialist (C-PENT)
Certified Penetration Testing Specialist, Penetration Testing
2024 -
In progress (since November 2024) as a Certified Penetration Testing Specialist (C-PENT).
Diploma in Advanced Cyber Security (DACS)
Diploma in Advanced Cyber Security (DACS), Cyber Security
2024 - 2025
Completed the Diploma in Advanced Cyber Security (DACS) program, including CEHv9, CCNA Basic, and MCSA Basic modules.
Web Hacking & Penetration Testing Training
Web Hacking & Penetration Testing Training, Web Hacking and Penetration Testing
2024 -
Completed Web Hacking & Penetration Testing training in 2024.
Matriculation
Matriculation, General Education
2023 -
Completed matriculation in 2023.
Tech stack
Software and tools used professionally
Availability
Location
Authorized to work in
Salary expectations
Job categories
Interested in hiring test?
You can contact test and 90k+ other talented remote workers on Himalayas.
Message testGet matched with your dream remote job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
