About Me#

What I Do#

• I break things (ethically) 🕵️‍♂️ — web apps, mobile apps, networks, and even Active Directory setups.
• I fix things 🔧 — working closely with developers to explain vulnerabilities and guide secure coding practices.
• I build things ⚡ — custom scripts, labs, and methodologies that make pentesting more efficient and repeatable.

Along the way, I’ve had the chance to work with banks, enterprises, and government organizations across the region, performing red teaming, secure code reviews, and cloud security assessments.

Professional Journey#

A Few Highlights#

• Helped organizations find and fix critical vulnerabilities before attackers could.
• One of my favorite things outside of client work is running CTF competitions and exchanging ideas with the security community in Oman, Qatar, Egypt, and Saudi Arabia.
• Explored mobile security in depth.
• Currently leveling up my skills with the OSCP certification.

Certifications#

• CRTO — Certified Red Team Operator
• CRTE — Certified Red Team Expert
• EMAPT — Mobile Application Penetration Tester
• OSCP — Offensive Security Certified Professional (in progress)
• HTB BlackSky Cloud Security Specialist
  • CYCLONE (Azure)
  • HALISTORM (AWS)
  • BLIZZARD (GCP)

Outside of Work#

When I’m not digging into code or pentesting environments, you’ll probably find me:

• Reading up on the latest security research.
• Building small labs to test new attack techniques.
• Sharing write-ups and learning resources for others starting in the field.

Let’s Connect#

• 📧 ahmmh777@gmail.com
• 🔗 linkedin.com/in/xeni0n1337