Mohammad Abdous Email & Phone Number

Tehran, Tehran Province, Iran

• Managed security code audits, identifying and remediating critical vulnerabilities in web applications.
• Executed black-box penetration testing on closed-source products and CMS platforms like WordPress, uncovering and addressing high-risk vulnerabilities.
• Conducted network penetration testing, uncovering and resolving vulnerabilities in the network and Active Directory.
• Orchestrated phishing campaigns, developing dedicated phishing platforms to enhance security awareness training.

• Conducted penetration testing for web applications, discovering and resolving high and critical vulnerabilities.
• Uncovered and reported zero-day vulnerabilities during projects, resulting in multiple CVEs.
• Evaluated applications developed in various languages and technologies including.Net, Java, PHP, Django, and Node.js.
• Performed security assessments on API technologies such as REST, SOAP, and GraphQL.
• Compiled detailed vulnerability reports, providing actionable recommendations to developers.
• Collaborated with teams across banking, financial services, stock market, and insurance industries to enhance application security.