• 🔐 Security Researcher at HackerOne | Top 10 Bug Hunter in Egypt 🇪🇬
• 💻 Penetration Tester | Specializing in Web Application Security & Bug Bounty
• 🎓 Graduated from Mansoura University (Electronics and Communications Engineering, 2024)

I'm passionate about cybersecurity, especially in the area of web penetration testing and bug bounty hunting. With a proven track record of discovering over 100 vulnerabilities in high-profile programs, I'm always eager to learn, grow, and contribute to the security community.

• Programming/Scripting: JavaScript, Python, Bash
• Web Penetration Testing: XSS, SQLi, IDOR, CSRF, and more
• Network Penetration Testing: Scanning, Pivoting, Exploitation
• Automation: Creating scripts for bug hunting & CVE exploitation
• Operating Systems: Linux (Kali, Ubuntu), Windows Server

0dSSRF is a powerful tool designed to automate the detection of Server-Side Request Forgery (SSRF) and Open Redirect vulnerabilities in web applications. Built to simplify the process for security professionals, the tool allows for multiple injection methods and comprehensive scanning.

Key Features:

• Multiple Injection Methods: Automate payload injections for Host Headers, Common Headers, Absolute URLs, and URL Parameters.
• Resumable Scanning: Continue interrupted scans with ease.
• Structured Output & Logs: Save and organize results in clean directories.
• Flexible Rate-Limiting Control: Adjust request rates for rate-limited environments.

Check out the detailed write-up on Medium for more insights into how the tool works and how to leverage it in real-world pentests.

• 🥇 Ranked Top 10 Bug Hunter in Egypt on HackerOne (Jan-Mar 2024)
• 🌍 8th Rank Globally among new "Up and Comers" (Oct-Dec 2023)
• 🐛 Discovered and reported 100+ vulnerabilities in bug bounty and vulnerability disclosure programs.

Thanks for visiting my profile! 😄