Security researcher and engineer focused on high-signal web vulnerability research, browser-side investigations, malware analysis, and practical automation that holds up under scrutiny.
Auto-refreshed daily via GitHub Actions. Last refresh: 2026-06-20 09:37 UTC
|
Current role Red Team Researcher at Synack |
Independent research Since December 2020 |
Current study MSc at University of Tuscia (UNITUS), Italy |
Status note: 5 public CVE records are listed below; 2 assigned CVE IDs are tracked separately until public reference URLs are available.
- Web vulnerability research with clear reproduction steps, impact framing, and remediation notes
- Browser-extension and client-side investigations tied to real exploit paths
- Router, Wi-Fi, and firmware security work with a bias toward findings that survive review
- Python and JavaScript tooling that compresses testing, validation, and reporting time
- Write-ups that stay technically dense, readable, and useful to engineers
CVE-2026-34474 — ZTE ZXHN H298A / H108N
Credential disclosure exposing admin and WLAN access.
CVE-2026-34473 — ZTE ZXHN H-Series
Unauthenticated denial-of-service condition affecting a 17-model router fleet.
CVE-2026-34472 — ZTE ZXHN H188A
Web wizard credential disclosure exposing admin, WLAN, and PPPoE secrets.
CVE-2021-35036 — Zyxel CPE / ONT / LTE-5G router fleet
Super-admin password leak exposing high-privilege router credentials through Zyxel's login-privilege configuration path.
CVE-2021-21735 — ZTE ZXHN H168N
Authentication bypass exposing full router admin access.
Assigned CVEs pending public publication in July 2026; technical details are intentionally withheld until the records are public.
CVE-2026-8508 — Zyxel router vulnerability
Medium-impact Zyxel vulnerability assigned for July 2026 publication; technical details withheld until the public record is released.
CVE-2026-6837 — Zyxel router vulnerability
High-impact Zyxel vulnerability assigned for July 2026 publication; technical details withheld until the public record is released.
- Account takeover on OLX Middle East via password-reset logic abuse
- Race condition in Medium's voting flow that enabled count manipulation
ShotBirdanalysis in March 2026: published teardown of an ownership-transfer-to-browser-C2 chain with credential and form-data capture plus follow-on Windows credential targeting- Hack The Box work that sharpened systematic enumeration, common web-vulnerability discovery, and Linux privilege escalation
| Project | Why it matters |
|---|---|
| Youtube-Downloader-Bookmarklet | Highest-traction public repo by stars; a JavaScript bookmarklet with clear real-world usage. |
| huawei-dg8045-hg630-hg633-Config-file-decryption-and-password-decode | Direct evidence of hands-on firmware and config-recovery work in the router/security niche. |
| burpsuite-custom-extension | Shows active extension development for live response modification and testing workflows. |
| BookMarkletsWiki | Demonstrates repeatable browser-side tooling instead of one-off snippets. |
| Ubicast-Video-Downloader | Lean JavaScript utility work with a direct one-click use case. |
| WIFI-Location-Locator-GUI | Supports the network and wireless side of the profile with a usable public tool. |
| Gist | Why it matters |
|---|---|
| ZTE ZXHN router vulnerabilities | Public technical reference for the 2026 ZTE/ZXHN CVE disclosures. |
| Export Chrome extensions inventory | Practical PowerShell tooling for browser-extension inventory, triage, and auditing. |
| Milanote Board to Markdown | Browser automation that turns visual boards into structured markdown output. |
| Reddit post exporter | Tampermonkey-based structured export tooling with a strong LLM and data-prep use case. |
- Red Team Researcher, Synack, Inc. | Remote | June 2025 to present
- Independent Security Researcher | Bug bounty and crowdsourced platforms | December 2020 to present
- MSc, University of Tuscia (UNITUS), Italy | 2025 to expected July 2027
- BSc Computer Science, Thebes Academy, Cairo | October 2021 to May 2025