Muhammad Khizer Javed
Hi everyone! My name is Muhammad Khizer Javed. I’m currently working in the cybersecurity sector mainly as a Bug Bounty Hunter and Penetration Tester, performing web/mobile application security assessments and network security assessments.
My goal is to join hands with other hackers in Pakistan and help mentor those with any sort of interest in cybersecurity and help grow our community.
When I’m not hacking, I’m mostly learning as I’m still a student of cybersecurity and in the process of growing and learning. I’m not a student of a university I prefer to learn online via self-placed courses.
I also enjoy playing video games (mainly story-based), reading novels, sleeping, and watching movies/documentaries. I have an interest in digital forensics thus I do learn about it in my free time as a hobby.
- ResidenceIslamabad, Pakistan
- Languages English, Urdu & Punjabi
What I Do
Muhammad is an ethical and professional researcher who has proactively helped groups across a myriad of industries. His professional bearing and forthcoming nature are to be commended as it was a pleasure to work with him on what are traditionally sensitive subjects for the greater interest of security. Thanks for being a solid pillar in this space Muhammad! We need more researchers like yourself.
I've personally worked with Khizer on different projects, He is a great team member who is actively working in the web application security field. He is also very active in bug bounty programs providing professional and well-written reports which appear to be a result of a very high level of expertise in penetration testing and vulnerability assessment. I feel he is capable of handling any issue quickly and in a responsible way. His work ethic is immaculate and so easy to work together with, I would highly recommend him.
Worked with Muhammad Khizer on a couple of projects, Boy has amazing skills in term of Pentesting assessments.
This hacker writes very clear and concise reports. Keep up the good work!
A very important issue found a well-written report and friendly communication too really loved your Well written report.
Great find, incredibly detailed report, and really appreciated the patience and follow-up as we resolved at "corporate speed". Thanks yet again 🙂
Hall Of Fames250+
– Eric Raymond
2016IMCB I-10/2 Islamabad
2018IMCB F-7/3 Islamabad
Studied Intermediate of Computer Science (ICS)
2016ICEPT - Iqra University Islamabad
Ethical Hacking Training
Ethical Hacking Training course offered by Iqra Center for Emerging Products and Technologies (ICEPT) at Iqra University Islamabad, Pakistan.
PentesterLab will get you to the next level. Whether you're a complete infosec noob, a bug bounty hunter, or a professional pentester, you will gain a deep understanding of vulnerabilities and methods of exploitation.
There's only one way to properly learn web penetration testing: by getting your hands dirty. and PentesterLab provides a unique and attractive opportunity to lean it.
2020ICSI,UK(International Cybersecurity Institute)
ICSI | CNSS Certified Network Security Specialist
Training for CNSS Includes a holistic view of modern network security including operating system hardening, firewalls, intrusion-detection systems, VPNs, and Encryption. Physical Security, Standards, System Security, and Security Policies are also included.
Autopsy Basics and Hands On (8-Hours)
Autopsy is the most popular open-source digital forensics platform. This course is an introduction to Autopsy for examiners who already know the fundamentals of digital forensics.
The course focuses on making cases, adding data sources, and how to analyze data it covers how to configure hash sets, search for keywords, correlate with past cases, and more. the course mixes video lectures with hands-on labs.
Certified Ethical Hacker(Practical)
C|EH Practical is a six-hour, rigorous exam that requires you to demonstrate the application of ethical hacking techniques such as threat vector identification, network scanning, OS detection, vulnerability analysis, system hacking, web app hacking, etc. to solve a security audit challenge.
A certified Ethical Hacker (Practical) is well versed with Ethical hacking techniques and has demonstrated the same when tested in an environment that mimics a real corporate network through the use of live virtual machines, networks, and applications, designed to test your skills.
Ethical hacking techniques such as threat vector identification, network scanning, OS detection, vulnerability analysis, system hacking, web app hacking.
EC-Council Certified Security Analyst (Practical)
ECSA (Practical) is a 12-hour, rigorous practical exam built to test penetration testing & report writing skills.
An EC-Council Certified Security Analyst (Practical) has the ability to perform threat and exploit research, understand exploits in the wild, write exploits, customize payloads, and make critical decisions at different phases of a pen testing engagement that can make or break the whole assessment.
Advanced network scans beyond perimeter defenses, automated and manual vulnerability analysis, exploit selection, customization, launch, and post exploitation maneuvers.
Website Security Testing
Web Application Security Testing
Mobile Application Security Testing
API Security Testing
Network Security Testing
- Digital Design
- Web Application Security
- Mobile Application Security
- Network Security
- Digital Forensics
- Social Media
- Time Management
- Social Networking
Bug Bounty Performance Stats
Performance stats showcase my expertise based on past submissions on Bug Bounty platforms like Bugcrowd and HackerOne.
What i want to Achieve?
As I grew in my career, I want to consider more advanced certifications to continue my professional development and to learn and sharpen my skills in the Security realm.
As I have to work, earn and learn all together this might take me some extra time but I’m sure to reach there soon.
Here are some certifications I would like to achieve in the coming few months.