~/security $ whoami

Mohamed Saied

|

1.5+ years uncovering vulnerabilities across web apps, APIs, and Android. Hall of Fame at NASA & Samsung. Exploiting logic flaws, authorization bypasses, and business weaknesses that scanners miss.

>_ About

$ whoami

$ cat about.txt

I'm a Junior Offensive Security Engineer with 1.5+ years of hands-on experience in Web, API, and Android penetration testing. I hunt bugs on YesWeHack and have been recognized in the Hall of Fame by NASA and Samsung — with additional acknowledgements from Ferrero and Zivver.

My approach goes beyond automated scanners — I think like an attacker to uncover business logic flaws, authorization bypasses, and chained attack vectors that turn defensive assumptions into offensive opportunities. I also co-authored a published research paper on Intrusion Detection Systems (Springer).

1.5+
Years Pentesting
4
Hall of Fame
3
Certifications
1
Publication
🌐

Web & API Exploitation

End-to-end penetration testing across web apps and APIs — XSS, SQLi, SSRF, JWT, IDOR, and chained logic attacks.

📱

Android Security

APK reverse engineering, mobile API interception, and static/dynamic analysis to find client-side trust issues.

🏆

Hall of Fame

Responsible disclosure recognized by NASA, Samsung, Ferrero, and Zivver through YesWeHack bug bounty.

>_ Experience

// where I've trained

Bug Bounty Hunter — Independent Security Research

Sept 2024 – Present

🎯YesWeHack

  • Large-scale reconnaissance: subdomain enumeration, endpoint discovery, parameter analysis, and attack-surface mapping via custom automation.
  • Disclosed vulnerabilities (authentication / authorization flaws, API abuse, business logic weaknesses) to NASA, Samsung, Ferrero, and Zivver.

Penetration Testing Trainee

Sept 2025 – Feb 2026

🔐Corelia (Remote, France)

  • End-to-end Web & API pentesting: XSS, SQLi, XXE, SSRF, CSRF, CORS misconfig, file upload / inclusion, path traversal, RCE, broken auth / access control, JWT, business logic.
  • Android testing via APK reverse engineering and traffic interception — insecure storage, client-side trust, and cryptographic misuse.

Offensive Security Trainee

July 2025 – Aug 2025

WE Innovate (Telecom Egypt)

  • Practiced web, Android, and network attack simulations in OWASP-aligned lab environments.

>_ Skills

// tools of the trade

🌐

Web & API Attack Techniques

  • SQL Injection (SQLi)
  • Cross-Site Scripting (XSS)
  • Server-Side Request Forgery (SSRF)
  • XML External Entity (XXE)
  • Cross-Site Request Forgery (CSRF)
  • CORS Misconfiguration Exploitation
  • File Upload / Inclusion Abuse
  • Path Traversal
  • Remote Code Execution (RCE)
  • Authentication Bypass
  • Insecure Direct Object Reference (IDOR)
  • JWT Attacks
  • Business Logic Exploitation
📱

Mobile Security

  • Android Penetration Testing
  • APK Reverse Engineering
  • Mobile API Interception
  • Static & Dynamic Analysis
  • Insecure Storage Detection
  • Cryptographic Misuse Review
📐

Frameworks & Standards

  • OWASP Top 10 (Web 2021)
  • OWASP API Security Top 10
  • OWASP Mobile Top 10
  • MITRE ATT&CK
  • Recon & Attack-Surface Mapping
  • Custom Automation Scripts
🛠️

Tools

  • Burp Suite
  • Nmap
  • Metasploit
  • Wireshark
  • JADX
  • apktool
💻

Languages

  • Python
  • Bash
  • JavaScript
  • PHP
  • SQL

>_ Certifications

// validated expertise

eWPTXv3 certificate
eWPTXv3 badge
Click to expand

eWPTXv3

INE Security

January 2026

eMAPT certificate
Click to expand

eMAPT

INE Security

2026

eJPTv2 certificate
Click to expand

eJPTv2

INE Security

2025

>_ Projects

// what I've built

IoT Security

Bad USB — IoT Security

Hardware attack simulation demonstrating USB-based attack vectors using a Digispark (ATtiny85) device. Executes HID attacks to deliver reverse shell payloads, highlighting the importance of endpoint and physical-layer security.

Digispark (ATtiny85)ArduinoPowerShellPythonFirebase
Security / ML

Machine Learning IDS

Machine-learning Intrusion Detection System that ingests Suricata network telemetry and classifies malicious traffic using XGBoost. Exposes detections through a React dashboard backed by a Flask API.

SuricataXGBoostReactFlask
Secure Development

Secure E-Commerce Platform

Full-stack e-commerce application built with security-first architecture. Implements OWASP Top 10 mitigations, secure authentication, parameterized queries, input validation, and comprehensive logging.

Next.jsMongoDBTailwind CSSTypeScript

>_ Leadership

// community & impact

🛡️

Founder & Club President

Nov 2025 – Present

CyberVerse — El Sewedy University of Technology

Founded and lead a student-run cybersecurity club focused on offensive security training, CTF practice, and peer-led research.

🎓

President

Nov 2024 – Present

Student Union — Faculty of Computer Engineering

Represent the student body of the Computer Engineering faculty and coordinate technical events, workshops, and academic initiatives.

🌍

Technical Assistant

May 2025

Cybersecurity Bootcamp — UNESCO / ICESCO

Supported delivery of an international cybersecurity bootcamp, helping participants build hands-on offensive and defensive skills.

🐍

Instructor

Feb 2025

Python Programming Bootcamp

Designed curriculum and taught Python fundamentals to a cohort of beginners, covering scripting basics and applied problem-solving.

>_ Education

// academic background

🎓

B.Sc. Network and Cybersecurity

Expected: July 2027

El Sewedy University of Technology

GPA
3.6
Focus
Offensive Security
Status
In Progress

>_ Feedback

// what people say

>_ Contact

// get in touch