PJPT | Penetration Tester | Digital Forensics & DFIR | Malware Analyst & Researcher | Cybersecurity Graduate (FAST-NUCES ’25)

I’m a cybersecurity graduate with a strong technical focus on penetration testing, digital forensics, incident response (DFIR), and malware analysis. My work is hands-on and practical ranging from authorized security testing and internal assessments to forensic investigations and system-level analysis.

I approach security from both an offensive and investigative perspective. I focus on identifying real-world attack paths, understanding how exploits work at a technical level, and analyzing how attacks leave artifacts across systems. This dual mindset helps me think beyond finding vulnerabilities and toward understanding impact, detection, and evidence.

I place a strong emphasis on ethical testing, reproducibility, and clear technical reporting. I regularly document my work through write-ups, blogs, and projects to demonstrate practical skills rather than just theoretical knowledge.

• Penetration Testing & Ethical Hacking (Web, Network, Active Directory)
• Digital Forensics & Incident Response (DFIR)
• Malware Analysis and Malware Development Research
• Secure Web & Full-Stack Application Development
• Security Automation and AI-assisted Analysis

• Improving real-world penetration testing methodology and professional reporting
• Expanding DFIR skills through hands-on forensic analysis and tooling
• Researching malware behavior, execution flow, and evasion techniques

• Nether's Gate – Malware Obfuscation Framework (C++) which is basically project studying and developing Obfuscation techinques, AV evasion, low-level execution techniques, and runtime behavior manipulation
• Memory Dump Analysis on AWS EC2 – Remote memory acquisition and analysis using Margarita Shotgun
• Digital Corpora Forensic Investigations – Lone Wolf (2018), Narcos (2019), and NIST Hacking Case
• Windows Write Blocker – Tool designed to preserve evidence integrity during forensic acquisition
• SIEM Deployment – Log monitoring and threat analysis using Wazuh, Grafana, and pfSense
• Secure Donation Portal – Web application built with a focus on secure development practices

• Practical Junior Penetration Tester (PJPT) – TCM Security
• Microsoft Certified: Azure Fundamentals (AZ-900)
• Purple Teaming Fundamentals – CyberWarFare Labs
• C3SA (Premium Edition) – CyberWarFare Labs
• iOS Forensics – Belkasoft
• DFIR with YARA, Sigma & Belkasoft X – Belkasoft
• Google IT Support Professional Certificate

• Memory Dump of AWS EC2 with Margarita Shotgun: Step-by-Step Guide
• Compiling a New Linux Kernel
• PacketMaze Writeup – CyberDefenders
• BlackEnergy Writeup – CyberDefenders
• How to Set up a Privately Self-Hosted Storage Cloud Using Nextcloud
• Creating and Accessing a Cloud-hosted Linux Virtual Machine

• Penetration testing and offensive security research
• Open-source DFIR tooling and investigations
• CTFs, labs, and malware research projects

📧 Email: ahmedkhubab2002@gmail.com
🔗 LinkedIn: linkedin.com/in/khubabbahmed
💻 GitHub: GlassesMan01

I enjoy breaking systems, investigating how they broke, and then designing them to be harder to break next time.