f
faisal_mahmudx

Faisal Mahmud

@faisal_mahmudx

CyberSecurity Specialist, Penetration Tester, Vulnerability Researcher!

Bangladesh
English, Urdu, Bengali
About me
I am Faisal Mahmud, a professional cybersecurity specialist specializing in penetration testing and vulnerability assessment. I help businesses uncover real-world security risks in web applications, APIs, and network environments using structured, OWASP-based methodologies. By combining automated tools with deep manual testing, I identify critical vulnerabilities that scanners often miss. I provide clear, evidence-backed reports with practical remediation guidance for both technical and non-technical teams.... Read more

Skills

f
faisal_mahmudx
Faisal Mahmud
Offline • 
Average response time: 1 hour

See my services

Technical Support
I will install kali linux, ubuntu, or any distro with custom configurations
From$15 / projectMore details
Technical Support
I will do a web vulnerability scan and security assessment with an actionable report
From$25 / projectMore details

Portfolio

Work experience

Daraz

Cybersecurity Specialist & Penetration Tester

Daraz • Part-time

Jan 2026 - Feb 20261 mo

Performed in-depth penetration testing on Daraz.com’s web platforms and APIs, simulating real-world attack scenarios to uncover vulnerabilities before they could be exploited. Combined automated scanning tools (Burp Suite, Nmap, SQLmap, Nikto) with manual testing techniques for thorough security assessments. Developed custom Bash and Python scripts to automate repetitive tasks and test complex attack vectors efficiently. Ensured all findings and reports aligned with OWASP Top 10 standards and internal security policies, maintaining strict confidentiality and ethical testing practices. Actively contributed to the continuous improvement of the security posture, focusing on protecting sensitive user and business data. Key Achievements: Identified and reported multiple medium-to-critical vulnerabilities, directly contributing to safer online operations for thousands of users. Streamlined penetration testing workflows through custom automation scripts, saving team time and increasing testing coverage. Skills Applied: Penetration Testing, Web & API Security, Bug Bounty, OWASP Top 10, Burp Suite, Nmap, SQLmap, Metasploit, Linux Security, Python/Bash Scripting

Foodpanda

Vulnerability Assessment Specialist

Foodpanda • Part-time

Oct 2025 - Nov 20251 mo

Conducted comprehensive vulnerability assessments on Foodpanda’s web applications, APIs, and internal systems to identify security gaps before exploitation. Utilized automated scanning tools (Nessus, OpenVAS, Burp Suite, Nikto) and manual validation techniques to ensure accurate findings. Analyzed scan results to prioritize vulnerabilities based on risk impact and business context. Delivered detailed remediation reports to development and security teams, including actionable recommendations to mitigate risks. Ensured all assessments aligned with OWASP Top 10, company security policies, and industry best practices. Collaborated with IT teams to validate patching and security controls post-assessment. Key Achievements: Identified multiple medium-to-critical vulnerabilities and helped Foodpanda enhance its security posture. Streamlined vulnerability assessment processes by integrating automated tools with custom scripts in Python/Bash. Skills Applied: Vulnerability Assessment, Web & API Security, Nessus, OpenVAS, Burp Suite, Nikto, Linux Security, Python/Bash Automation, OWASP Top 10