Skip to content

Saudi-hacker/security-research

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 

Repository files navigation

Security Research & Bug Bounty

Vulnerability Discovery · Penetration Testing · Responsible Disclosure


Overview

This repository documents my journey in cybersecurity research, ethical hacking, and bug bounty hunting. It contains research notes, methodologies, and responsible disclosures.


Hall of Fame

TU Delft University (Netherlands) — 2026

Vulnerability Discovered & Responsibly Disclosed

Successfully identified and reported a security vulnerability in the systems of Delft University of Technology (TU Delft), one of Europe's leading technical universities. The finding was validated and my name was added to their Hall of Fame for responsible disclosure.

View Hall of Fame


Skills & Methodologies

Reconnaissance

  • Subdomain enumeration
  • Technology stack fingerprinting
  • Endpoint discovery and mapping
  • Open-source intelligence (OSINT)

Vulnerability Assessment

  • OWASP Top 10 testing
  • Authentication & authorization testing
  • API security assessment
  • Input validation analysis
  • Business logic flaw detection

Tools & Environment

Kali Linux  •  Burp Suite  •  Nmap  •  Wireshark
Metasploit  •  SQLMap  •  DirBuster  •  recon-ng

Conference Participation

Black Hat MEA

Attended Black Hat Middle East & Africa, the region's premier cybersecurity conference. Gained exposure to cutting-edge security research, attended workshops by industry leaders, and networked with global security professionals.


Research Philosophy

┌─────────────────────────────────────────┐
│                                         │
│    BREAK  →  UNDERSTAND  →  REPORT      │
│                                         │
│   Find what's broken. Understand why.   │
│   Help fix it responsibly.              │
│                                         │
└─────────────────────────────────────────┘

I believe in responsible disclosure — vulnerabilities are reported directly to affected organizations with full context and remediation guidance before any public discussion.


Training & Certifications

Provider Course
Tuwaiq Academy (Sattra) Introduction to Cybersecurity
Tuwaiq Academy (Sattra) Kali Linux Fundamentals
Tuwaiq Academy (Sattra) Linux 101
Self-Directed OWASP Web Security Testing Guide

Contact

For security research collaboration or responsible disclosure coordination:


"Security is not a product, but a process." — Bruce Schneier

About

Cybersecurity research, vulnerability disclosures, and bug bounty findings. TU Delft Hall of Fame 2026. Black Hat MEA participant.

Topics

Resources

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors