Skip to main content
Youssef HussienYH
Open to opportunities

Youssef Hussien

@youssefhussien

I’m a penetration tester specializing in web, mobile, Active Directory, and AI/LLM security with client-ready reporting.

Egypt
Message

What I'm looking for

I’m available immediately for full-time, remote, or contract roles where I can run web/mobile/AD security assessments and AI/LLM red teaming—then deliver clear, client-ready reporting with actionable remediation guidance.

I’m a Penetration Tester with 1.5+ years of experience across web, API, mobile (Android & iOS), and network assessments, including Active Directory exploitation and AI/LLM security. I focus on discovering and validating real vulnerabilities in production-like environments—often inside firewalled settings—then documenting results in a way clients and teams can act on.

I’ve delivered professional, client-ready reports for every engagement, covering findings, risk ratings, proof-of-concept, and remediation guidance. In my Classera internship, I performed black-box assessments across multiple products and discovered 6 critical/high vulnerabilities across issues like insecure privileges, injection, and insecure configuration. In ZeroSploit, I assessed 10+ web applications and contributed to identifying and exploiting 15+ vulnerabilities while also building hands-on strength in network scanning, privilege escalation, and Active Directory attacks.

I’m also an active competitive CTF player—ranked in the Top 10 regionally (Arab Security Wargames, ICMTC). Recent highlights include 2nd place at Cyshield Mythical Beast CTF by chaining SQLi/SSRF/XXE to enumerate and escalate through Active Directory, plus 2nd place at CAT Reloaded by excelling in Web and Android challenges. I bring the same drive and structured thinking into professional red-team-style testing.

Beyond assessments, I’m currently building an AI Agent Security Tester graduation project in Python and LLMs to detect Prompt Injection vulnerabilities and insecure MCP implementations, including guardrail testing against jailbreaking and adversarial attacks. I’ve also engineered an automated network vulnerability scanner that reduced manual reconnaissance time by 40%. With certifications and specialized training (OSCP, eWPTXv3, CRTA, and CNSP & CAP), I’m ready to contribute immediately to full-time remote or contract security work.

Experience

Work history, roles, and key accomplishments

SS

Penetration Tester Intern

Spark Professional Services

May 2026 - Jun 2026 (1 month)

Performed end-to-end penetration tests across web applications, APIs, Android, iOS, and network infrastructure, identifying and validating vulnerabilities. Authored professional penetration-testing reports and reported findings to the team lead.

CC

Vice-President & Web Instructor

Cyberus (Ain Shams University Chapter)

Oct 2024 - Oct 2025 (1 year)

Led technical workshops on web security and penetration testing methodologies for students. Delivered instruction focused on practical penetration testing approaches.

ZW

Infrastructure Penetration Tester Intern

ZeroSploit (WeINNOVATE)

Aug 2024 - Sep 2024 (1 month)

Performed network scanning, privilege escalation, and Active Directory attacks, identifying and mitigating critical vulnerabilities in Windows and Linux environments. Conducted security assessments on 10+ web applications and performed vulnerability discovery and exploitation.

Education

Degrees, certifications, and relevant coursework

Ain Shams University logoAU

Ain Shams University

Bachelor of Computer Science and Information Systems, Computer Science and Information Systems

2022 - 2026

Bachelor of Computer Science and Information Systems degree focused on core topics such as operating systems, OOP, data structures and algorithms, and computer architecture.

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan