Khusham Asghar

Penetration Tester

Gulf Trends • Full time

Aug 2023 - Present • 2 yrs 9 mos

As a penetration tester, I conducted thorough security assessments, identifying vulnerabilities across networks, systems and applications. I utilized various tools and techniques to simulate attacks, provided detailed reports, and recommended solutions to enhance security posture and mitigate risks effectively. Highlights: • Utilized Metasploit, Nmap, Burp Suite, OWASP ZAP, Traffic Analysis, Bettercap and other penetration testing tools effectively along with my proficiency in Bash, Python, Powershell scripting & automation to carry out thorough security assessments and implement robust solutions. • Showcased strong analytical thinking and problem-solving skills in performing risk analysis, Compliance checks and incident responses. • Developed scripts for automation using Bash, Python, Powershell. • Created detailed reports, highlighting findings and recommending improvements. • Performed Vulnerability Assessment and Penetration Testing on various systems to identify potential security risks and implemented remediation testing measures to ensure robust network security. • Performed manual Application penetration testing against API’s (REST/SOAP), Web Applications, Mobile applications and thick client applications along with developing and exploiting POCs. • Successfully identified and mitigated critical vulnerabilities in client systems, enhancing security posture and reducing risk exposure by 40% through comprehensive penetration testing and detailed reporting.