Junior Penetration Tester | Web Application Security | Offensive Security | MSc Computer Science Student at MBZUAI

I am a Security & Forensics graduate from Higher Colleges of Technology and a current MSc Computer Science student at Mohamed bin Zayed University of Artificial Intelligence (MBZUAI). My focus is web application security, penetration testing, practical vulnerability discovery, and applied AI for cybersecurity.

I work on AI-assisted cybersecurity projects, including attack detection, anti-DDoS analysis, and BXSS evaluation. My interests include digital forensics, Active Directory security, network security, WordPress/Joomla security, CVE research, responsible disclosure, exploit analysis in lab environments, payload testing, malware analysis, reverse engineering, cryptography, incident response, threat hunting, secure coding, and security documentation.

• Web Application Security
• API Security
• Authentication & Access Control Review
• Browser XSS / BXSS Testing
• Penetration Testing Labs
• Payload Testing in Authorized Labs
• CVE Research & Vulnerability Intelligence
• Responsible Disclosure Workflow
• Exploit Analysis Concepts
• Attack Surface Analysis
• Active Directory Security
• Network Security
• WordPress / Joomla Security
• Incident Response
• Digital Forensics
• Malware Analysis
• Reverse Engineering
• SIEM / Log Analysis
• Threat Hunting
• AI-Assisted Attack Detection
• Secure Coding

I maintain a structured cybersecurity lab portfolio focused on safe, authorized, and educational security work.

Main lab areas:

• Web Application Security
• API Security
• Active Directory Security
• Network Security
• WordPress / Joomla Security
• CVE Research
• Responsible Disclosure
• Exploit Analysis Concepts
• Payload Testing
• Incident Response
• Digital Forensics
• Malware Analysis
• Reverse Engineering
• SIEM / Log Analysis
• Threat Hunting
• Secure Coding
• AI-Assisted Attack Detection

• Web Application Security
• Penetration Testing
• Vulnerability Assessment
• CVE Research
• Vulnerability Intelligence
• Attack Surface Analysis
• Responsible Disclosure Workflow
• Exploit Analysis Concepts
• Payload Testing in Authorized Labs
• CTF Challenges

• Web Application Testing
• API Security Review
• Authentication & Access Control Review
• Input Validation Review
• Session Management Review
• SQL Injection Prevention
• XSS / BXSS Testing
• Secure File Upload Review
• WordPress Security
• Joomla Security

• Active Directory Security
• Windows Security
• Linux Security
• Network Security
• Firewall / Segmentation Concepts
• Incident Response
• Disaster Recovery
• SIEM / Log Analysis
• Threat Hunting

• Digital Forensics
• Evidence Handling Concepts
• Malware Analysis Concepts
• Reverse Engineering Concepts
• Static Analysis Concepts
• Dynamic Analysis Concepts
• Indicators of Compromise
• Security Report Writing

• AI-Assisted Attack Detection
• LLM-Assisted Security Analysis
• Machine Learning Foundations
• Data Analysis
• Algorithms & Data Structures
• Operating Systems
• Secure Software Development

• Python
• C/C++
• Java
• PostgreSQL/SQL
• JavaScript
• HTML
• CSS
• PHP
• Bash
• PowerShell
• C#
• VB.NET

• PyTorch
• TensorFlow
• Flask
• Django
• Bootstrap
• SQLAlchemy
• Scikit-learn
• Pandas
• Matplotlib
• NumPy

• Linux (Ubuntu, Kali, Fedora)
• Windows Server
• Cisco Packet Tracer
• FTK Toolkit
• QRadar
• Microsoft Project
• Microsoft Office

Academic cybersecurity project using LLM-assisted analysis to identify suspicious traffic patterns and support attack-detection concepts.

AI-assisted browser XSS research project focused on evaluating payload behavior across browser and template-rendering contexts.

Structured lab portfolio for authorized security learning, checklists, notes, reports, and documentation across web security, AD security, network security, CMS security, incident response, forensics, malware analysis, reverse engineering, and AI-assisted attack detection.

• First Place — Emirati CTF Challenge, Dubai Cyber Innovation Park (2023)
• CTF Winner — CIS Cyber Olympics 2024
• First Place — Federal Authority for Identity, Citizenship & Port Security CTF Challenge
• First Place — Higher Colleges of Technology Hackathon (2023)
• Third Place — ADX Abu Dhabi Securities Exchange Hackathon (2024)

Mohamed bin Zayed University of Artificial Intelligence (MBZUAI)
MSc Computer Science
August 2025 – May 2027

Higher Colleges of Technology — Al Ain, UAE
Bachelor of Information Technology — Security & Forensics
August 2019 – December 2024 | CGPA: 3.36

• LinkedIn: linkedin.com/in/hamad-alyahyaee
• GitHub: github.com/3inawe

Junior roles and internships in penetration testing, web application security, offensive security, application security, cybersecurity research, digital forensics, incident response, network security, and AI-assisted cybersecurity.

Building practical cybersecurity skills through labs, CTFs, academic projects, and applied security research. Focused on authorized testing, responsible disclosure, and ethical security practice.