Hi, I'm Khizer 👋
Penetration Tester & Bug Bounty Hunter. I love uncovering vulnerabilities and helping secure systems. Actively protecting businesses from cyber threats through real-world testing and research.
MKJ

About

I began my hacking journey back in 2013 when I was just 15 when I discovered hacking, driven by my passion for spotting vulnerabilities. Now at 27, I’m a cybersecurity professional with over 8 years of experience. I’ve reported vulnerabilities for industry leaders like Apple, Google, Microsoft, The U.S. Department of Defense, and The Government of Singapore. With over 200 companies acknowledging my findings, I specialize in web, mobile, and API security testing. I'm an active bug bounty participant on Bugcrowd and HackerOne, With a passion for security and past speaking engagements at local and international universities on Bug Bounty, as well as conferences like BlackHat MEA, I’m dedicated to securing global technologies and advancing cybersecurity.

Skills

Penetration Testing
Web & Mobile App Security
API Security
Bug Bounty Hunting
Vulnerability Assessment
Vulnerability Management
Cloud Security
OWASP Top 10
CWE Top 25
Burp Suite
Metasploit
Python
Bash

Work Experience

S

Securitywall.co

2019 - Present
Lead Penetration Tester
Led multiple high-profile penetration testing projects for clients across various industries. Managed a team of security researchers and spearheaded security audits to identify critical vulnerabilities.
D

Dunicot

2018 - 2019
Penetration Tester
Conducted in-depth penetration tests, identified key vulnerabilities, and provided remediation strategies for clients across diverse sectors.
B

BUG'S LIFE
Contractor

2021 - 2022
Software Engineer
Conducted penetration tests on Mobile & Web Targets, and provided remediation strategies for BUG'S LIFE & provided suppoort.
B

Bugcrowd
Freelance

2015 - Present
Security Researcher / Bug Bounty Hunter
As a Bug Bounty Hunter I've identified and reported critical vulnerabilities to 200+ companies over the years, including major tech firms. Reported over 603 valid vulnerabilities on the platform. Ranked 31st on Bugcrowd currently.
H

HackerOne
Freelance

2015 - Present
Security Researcher / Bug Bounty Hunter
As a Bug Bounty Hunter I've identified and reported critical vulnerabilities to 150+ companies, including major tech firms. Reported over 155 valid vulnerabilities on the platform.

Education

P

Pearson Edexcel

2023 - Present
B.Tech / HND PROGRAM
I

Islamabad Model College For Boys F-7/3

2016 - 2018
Higher Secondary School Certificate (HSSC)
I

Islamabad Model College For Boys I-10/2

2014 - 2016
Secondary School Certificate (SSC)

Certifications and Trainings

E

ECSA- EC-Council Certified Security Analyst (Practical)

2020 - 2023
EC-Council
Certification Number: ECC9108675423
ECSA (Practical) is a 12-hour, rigorous practical exam built to test penetration testing & report writing skills. An EC-Council Certified Security Analyst (Practical) has the ability to perform threat and exploit research, understand exploits in the wild, write exploits, customize payloads, and make critical decisions at different phases of a pen testing engagement that can make or break the whole assessment. Advanced network scans beyond perimeter defenses, automated and manual vulnerability analysis, exploit selection, customization, launch, and post exploitation manoeuvres.
C

Certified Ethical Hacker(Practical)

2020 - 2023
EC-Council
Certification Number: ECC5108723946
C|EH Practical is a six-hour, rigorous exam that requires you to demonstrate the application of ethical hacking techniques such as threat vector identification, network scanning, OS detection, vulnerability analysis, system hacking, web app hacking, etc. to solve a security audit challenge. A certified Ethical Hacker (Practical) is well versed with Ethical hacking techniques and has demonstrated the same when tested in an environment that mimics a real corporate network through the use of live virtual machines, networks, and applications, designed to test your skills. Ethical hacking techniques such as threat vector identification, network scanning, OS detection, vulnerability analysis, system hacking, web app hacking.
C

Certified AppSec Practitioner (CAP)

2023
The SecOps Group
Credential ID 7095774
CAP is intended to be taken by application security engineers, application developers, SOC analysts, penetration testers, red and blue team members and any appsec enthusiast, who wants to evaluate and advance their knowledge.
I

ICSI | CNSS Certified Network Security Specialist (Training)

2020
ICSI – International CyberSecurity Institute
Membership ID: 18277310
Training for CNSS by International Cybersecurity Institute UK, Includes a holistic view of modern network security including operating system hardening, firewalls, intrusion-detection systems, VPNs, and Encryption. Physical Security, Standards, System Security, and Security Policies are also included.
P

PentesterLab (Trainings)

PentesterLab
PentesterLab is an Interacted Platform to Learn Cybersecurity Practically. PentesterLab will get you to the next level. Whether you're a complete infosec noob, a bug bounty hunter, or a professional pentester, you will gain a deep understanding of vulnerabilities and methods of exploitation. There's only one way to properly learn penetration testing: by getting your hands dirty. and PentesterLab provides a unique and attractive opportunity to lean it.
A

Autopsy Basics and Hands On (Training)

2020
Basis Technologies
Autopsy is the most popular open-source digital forensics platform. This course is an introduction to Autopsy for examiners who already know the fundamentals of digital forensics. The course focuses on making cases, adding data sources, and how to analyse data it covers how to configure hash sets, search for keywords, correlate with past cases, and more. the course mixes video lectures with hands-on labs.
E

Ethical Hacking Training

2016
ICEPT - Iqra University Islamabad
Ethical Hacking Training course offered by Iqra Center for Emerging Products and Technologies (ICEPT) at Iqra University Islamabad, Pakistan.

Bugcrowd Statistics

MKJ

Muhammad Khizer Javed

Rank

32nd

Reports

605

Points

9220

Total Projects

168

Badges:

Bounty Bee Level 6
Submission Shogun Level 8
P1 Warrior Level 7
✓ ID Verified✓ Background Checked
Visit full profile

HackerOne Statistics

MKJ

Muhammad Khizer Javed

Reputation

4162

Reports

155

Thanks

125

Signal

4.08

Badges:

Ambassador World Cup 2023 Participant
Greybeard
Bounty Hunter
✓ ID Verified✓ Background Checked
Visit full profile
My Projects

Discover My Projects

I've engaged in extensive Bug Bounty Hunting and Penetration Testing, identifying critical vulnerabilities. Here are some of my notable findings. For more insightful blogs, Visit blog.securitybreached.org

Bug Bounty Blueprint: A Beginner’s Guide

Bug Bounty Blueprint: A Beginner’s Guide

In today's digital landscape, cybersecurity is more critical than ever, and bug bounty hunting has emerged as an exciting opportunity for security enthusiasts and professionals alike. In this comprehensive guide, we delve into the essentials of bug bounty hunting, providing you with the foundational knowledge and practical tips to embark on your journey.

Penetration Testing
Bug Bounty Guide
Skill Development
How to Learn Bug Bounty Hunting
Read Full Guide Here
AI Hijack: How I Took Control of an AI Assistant

AI Hijack: How I Took Control of an AI Assistant

During a penetration test, I uncovered an exposed OpenAI API in JS file key that allowed unauthorized control of an AI assistant in a live production environment. I demonstrated how attackers could manipulate the assistant's instructions, raising awareness of AI-related vulnerabilities. This discovery emphasized the critical need for stronger API security when integrating AI technologies into business operations.

Penetration Testing
Bug Bounty POC
AI Security
Read More
Hacking 100k+ Loyalty Programs for Fun and Profit!

Hacking 100k+ Loyalty Programs for Fun and Profit!

While performing a security assessment for an eCommerce client, I uncovered a vulnerability that could have allowed malicious actors to manipulate loyalty points and redeem them for free products, cash, or massive discounts. By exploiting the 3rd party rewards system, it was possible to inflate points across 100k+ loyalty programs across the internet. I reported the vulnerability to the client and the 3rd party helped them patch the issue before any exploitation occurred.

Penetration Testing
Bug Bounty POC
Web App Security
Read More
Finding Hidden Threats: How I Found Leaked AWS Credentials in an Android App API Using DAST

Finding Hidden Threats: How I Found Leaked AWS Credentials in an Android App API Using DAST

During a bug bounty project, I discovered leaked AWS credentials embedded in the API of an Android application for an online casino. This vulnerability had the potential to grant full access to their AWS infrastructure, putting sensitive data and operations at risk. After reporting the issue, I worked closely with the company to remediate the vulnerability and improve their security posture.

Penetration Testing
Bug Bounty POC
Android App Security
Read More

Hall of Fame

Some Companies I've reported vulnerabilities to and received acknowledgments from

Total programs: 371

Facebook
Google
Apple
AWS
Adidas
Alibaba
AT&T
Automattic
BetterHelp
Bugcrowd
Card.com
Cloudflare
Coinbase
Department of Defense
Elementor
GoPro
Lufthansa
Magento
Mastercard
Microsoft
Netflix
OneLogin
OpenSea
Opera
PlayStation
Salesforce
SecureDrop
Snapchat
Spotify
Starbucks
T-Mobile
Twilio
Uber
Unilever
Warner Bros. Discovery
Wise
Zoom
Contact

Get in Touch

Want to chat? Just shoot me a dm with a direct question on LinkedIn and I'll respond whenever I can.

LinkedIn
X
youtube