Ifrah is an accomplished independent security researcher and part-time bug bounty hunter based in UAE. With over 5+ years of experience in web application penetration testing, she is skilled in identifying and testing for client-side and business logic vulnerabilities.She is also skilled in mobile app penetration testing, thick client penetration testing, Active Directory penetration testing, internal assessments, host assessments, and wireless penetration testing.Throughout her career, Ifrah has worked with a range of high-profile clients, including the Department of Defense and the Ministry of Justice UK. She has also conducted penetration testing for internal and external network infrastructures for various clients in the banking and online business sectors.Ifrah was interviewed as a featured expert for the book "Corporate Cybersecurity: Identifying Risks and the Bug Bounty Program" by John Jackson. Additionally, her work on the ASP.NET Core Spoofing Vulnerability (CVE-2019-1075) was published by Microsoft.In addition to her professional work, Ifrah is the founder of SheSecPakistan, an infosec community for Pakistani womxn. Through this community, she aims to empower and support women in the field of information security.Ifrah is active on multiple bug bounty platforms and is constantly seeking new opportunities to apply her expertise and skills to help organizations improve their security posture.
Listed skills include Python, Vulnerability Assessment, Penetration Testing, Information Security, and 9 others.
