- Reply rate:
- 100.0%
- Availability:
- Hourly ($/hour)
- Age:
- 21 years old
- Location:
- Karachi, Sindh, Pakistan
- Experience:
- 4 years
Hijaab Sikander-
-
Hijaab Sikander
I am a cybersecurity professional with a proven track record in penetration testing and vulnerability
assessments, utilizing tools like Burp Suite and Metasploit. I possess a strong understanding of secure coding
practices and specialize in identifying and mitigating vulnerabilities, particularly XSS. Driven by a passion for
continuous learning and a commitment to enhancing cybersecurity posture, I am eager to contribute my skills
and expertise to a collaborative team focused on building and maintaining robust and resilient digital
environments.
Education
Bachelors In Software Engineering (Last Semester)
2021 - 2025
DHA Suffa University
CGPA 3.6
Skills
Symantec, Trend Micro, Active Directories
ISO 270001, GDPR, PCI DSS, SOC 2
NIST, HIPAA, CIA Triad, Python, Linux
waafw00f, Dnsrecon, Dmitry
Metasploit, Burp suite, nmap, AORT
Eavesfropping = WireShark, Putty, Cryptography
Kali Linux, wpscan, amaas
Steganography
Threat Detection, Network Security
EDR, MDR, XDR, SIEM
GRC (Governance, Risk and Compliance)
Machine Learning Techniques + AI
Java (Software Design And Architecture)
Java (Object Oriented Programming)
Web Development (HTML, CSS, JavaScript,
BootStrap, React), UI / UX, WordPress
C Programming Language.
MySQL (Database Management System)
Projects
Phishing URL Detection Tool - Python
Tool for: - Python
a. Password strength evaluation with visual indicators.
b. Suggestions for improving weak passwords.
c. A secure random password generator.
Tool for: - Python
a. Port Scanning
b. HTTP Header Analysis
c. DNS Lookup
Tic-Tac-Toe game - C
Washing company Website - HTML, CSS, JavaScript, BootStrap
Hekto - HTML, CSS, JavaScript, BootStrap
Enercon Management Services Website - WordPress
GPA Calculator - Java
Employee Management System - Java Language
Library Management System - MySql + PHP
Banking Application - SpringBoot - MySql
Parking Management System - Java
Mobile Application UI / UX - Figma
My Final Year Project focused on enhancing email security by developing a system to detect malicious
content concealed within email attachments using steganography. This project leveraged AI/ML
techniques to analyze suspicious files and identify hidden patterns indicative of malicious activity,
contributing to a more secure email communication environment.
I have actively worked on discovering and documenting multiple XSS (Cross-Site Scripting) vulnerabilities
across various websites, enhancing my understanding of web security and vulnerability identification. Each
discovery allowed me to further refine my skills in ethical hacking, particularly in securing web applications
against reflected and stored XSS attacks. My findings are shared on LinkedIn to contribute to the
cybersecurity community and spread awareness about the importance of securing digital infrastructures. This
ongoing work is driven by a commitment to ethical practices and protecting user data, which aligns with my
focus on continuous learning and professional growth in cybersecurity.
Experience
SECUREBEANS LLC - InfoSec Engineer
Brainwave Matrix Solutions - Cyber Security Internship
ITSOLERA PVT LTD - Cyber Security Internship
Techzach - Web Developer
January 2025 - Present
November 2024 - December2024
November 2024 - January 2025
September 2024 - Nvember 2024
Appsnation - Frontend Developer
Freelance Penetration Tester, Bug Hunter, Graphic Designer, Website Designer
Developer & WordPress - Fiverr
April 2024 - August- - Present
Fiverr Level 2 Seller: Completed professional penetration testing orders on Fiverr, specializing in securing
WordPress websites through vulnerability scanning and XSS detection. Expert in graphic design, website,
and WordPress development, delivering projects with high client satisfaction.
Specialized Skills: Proficient in creating engaging designs and functional websites that boost brand
presence.
Certifications
Google Cybersecurity - Coursera
Intrusion Detection and Prevention Cisco Network Security - Cisco Network Security - LinkedIn Learning
Foundation In CyberSecurity - CISCO
The Cybersecurity Threat Landscape - LinkedIn Learning
Network Mastery For Ethical Hackers - Udemy
Introduction to Bash Scripting - Datacamp
ISO/IEC 27001:2022 INFORMATION SECURITY ASSOCIATEā¢
Introduction to SQL - Datacamp
Intermediate SQL - Datacamp
HTML, CSS, and Javascript for Web Developers - Coursera
Java (Basic) - HackerRank
Spring MVC, Spring Boot and Rest Controllers - Coursera
