h
hammassadozai

Hammas M

@hammassadozai

Freelance Web Penetration Tester

Pakistan
English, Urdu
About me
I am a Freelance Web Penetration Tester specializing in identifying and fixing vulnerabilities before malicious hackers can exploit them. I provide white-label security audits and vulnerability assessments for web development agencies to ensure their clients' websites are secure before going live.... Read more

Skills

h
hammassadozai
Hammas M
Offline • 
Average response time: 1 hour

See my services

Software Testing
I will test your website for bugs and security issues with a detailed report
Security
I will do a security audit and bug testing for your wordpress website

Portfolio

Work experience

Freelancing_Career

Freelance Security Researcher & Penetration Tester

Freelancing Career • Freelance

Jan 2025 - Present1 yr 6 mos

I perform web application penetration testing and security assessments for clients across various industries. My work includes identifying critical vulnerabilities such as broken access controls, API security flaws, sensitive data exposure, and authentication bypasses using OWASP Top 10 methodology. I am also an active security researcher on the Bugcrowd bug bounty platform where I discover and responsibly disclose vulnerabilities in real-world web applications. My findings include unauthenticated API endpoints exposing PII, internal asset exposure in production environments, and WordPress security misconfigurations. Tools: Burp Suite, Nmap, WPScan, Nuclei, Postman, tcpdump, Wireshark Methodologies: OWASP Top 10, PTES, CVSS 3.1, API Security Testing