Abd Alrahman Abd Alfatah
Nablus
Summary
Detail-oriented professional specializing in vulnerability assessments and penetration testing. Experienced in documenting comprehensive reports for stakeholders, analyzing security protocols, and identifying weaknesses. Committed to enhancing client infrastructures through strategic security improvements.
Overview
3
3
years of professional experience
1
1
Certification
Work History
Bug bounty Hunter
Hackerone & BugCrowd
12.2022 - Current
- Conducted vulnerability assessments on network systems and applications.
- Executed penetration tests using industry-standard tools and methodologies.
- Analyzed security protocols to identify weaknesses in client infrastructures.
- Documented findings and prepared detailed reports for stakeholders.
- Collaborated with IT teams to enhance security measures and protocols.
- Provided recommendations for remediation of identified vulnerabilities.
- Identified security flaws in web applications through manual testing techniques like Cross-site Scripting, SQL Injection.
- Conducted manual and automated vulnerability assessments using industry standard tools such as Nessus, Metasploit, Nmap, Burp Suite.
Education
Bachelor of Science - Computer Engineering
An-Najah National University
Palestine - Nablus04-2027
Skills
- Vulnerability assessment
- AI/LLM Security Testing
- Penetration testing
- Security protocols
- Report documentation
- IT collaboration
- Web application testing
- Security code review
- API security testing
- Penetration Testing Tools
- Ethical hacking
- Reconnaissance & Information Gathering
- OWASP Top 10 & MITRE ATT&CK
Accomplishments
- Discovered and responsibly reported 50+ valid vulnerabilities across multiple web applications and platforms.
Certification
- Extensive self-study in penetration testing, web application security, and vulnerability assessment.
- Completed multiple hands-on labs and training platforms (HackTheBox, TryHackMe, PortSwigger Web Security Academy).
- Familiar with the knowledge domains of OSCP, CEH, and Security+, though certification not formally obtained.
- Continuously learning and applying industry best practices through real-world bug bounty engagements.
Affiliations
- Invited as a speaker for the workshop “Introduction to Web Penetration Testing”, organized in collaboration with An-Najah National University and HackerOne Palestine Club
https://h1.community/events/details/hackerone-palestine-hackerone-club-presents-introduction-to-bug-bounty-workshop/
Timeline
Bug bounty Hunter
Hackerone & BugCrowd
12.2022 - Current
Bachelor of Science - Computer Engineering
An-Najah National University
Similar Profiles
Bharath M NBharath M N
web penetration testing (Web Security) at HackerOne, Bugcrowdweb penetration testing (Web Security) at HackerOne, Bugcrowd
Muraduzzaman AshaMuraduzzaman Asha
Bug Bunty Hunter at HackerOne,Bugcrowd,Open Bug BountyBug Bunty Hunter at HackerOne,Bugcrowd,Open Bug Bounty
Venkatakirana SVenkatakirana S
Freelance Bug bounty Hunter at Hackerone, Bugcrowd, RDP ProgramsFreelance Bug bounty Hunter at Hackerone, Bugcrowd, RDP Programs
Mohamed AbubakerMohamed Abubaker
Veterinary Doctor at FreelanceVeterinary Doctor at Freelance
Batool DeriehBatool Derieh
Data Sience Section Head at The National Bank (TNB)Data Sience Section Head at The National Bank (TNB)