drop drop

Brief Info

Ahmad Halabi.

Lebanese, born in United Arab Emirates.

Cyber Security Specialist, Hacker, Developer, Entrepreneur.

Managing Director at Resecurity (UAE).

BS in Computer Science.

Lives in Dubai – UAE.

Work Experience

– Managing Director at Resecurity (July 2022, Present) About Resecurity.

– Forming an Alliance with Resecurity through Cybit Sec’s Acquisition (July 2022) News LinkLinkedIn News.

– Founder & Director at Cybit Sec (Feb 2021 – July 2022) Cybit Sec LinkCrunchbase

– Senior Cyber Security Specialist at Fire Phoenix – Dubai (June 2021 – July 2022).

– Red Team Member on Synack (April 2021 – Present).

– Hacker Member on Yogosha (March 2022 – Present).

– Bug Bounty Hunter on HackerOne (June 2019 – Present).

– Cyber Security Specialist at AIY Expert Solutions (Jan 2020 – Sep 2020).

– Research and Development (R&D) at AIY Expert Solutions (2019).

– Software Developer at AIY Expert Solutions (2019).

Achievements

– Discovered Over 2000 Vulnerabilities in Over 200 Companies.

– The 200+ Companies and Programs include: U.S. Department of Defense – Pentagon – DARPA – HackerOne – Google – Facebook – Twitter – LinkedIn – Microsoft – Apple – Telegram – Eset – Bitdefender.

– Listed Among Top 50 Hackers All Time WorldWide.

– Scored 13k Reputation on HackerOne in 2 Years (Jun 2019 – Jun 2021).

– Ranked 1st hacker at United States Department Of Defense (2019).

– Ranked 3rd hacker at United States Department Of Defense (2020).

– Ranked 1st hacker at IBM (2020).

– Ranked 7th hacker at HackerOne Leaderboard (2020).

– Ranked 5th hacker at HackerOne Leaderboard (2019 Q4).

– Ranked 5th hacker at HackerOne Leaderboard (2020 Q4).

– Ranked 1st Hacker in Lebanon by HackerOne (3 Years in a Row 2019, 2020, 2021).

– Ranked 1st Hacker at US Defense Industrial Base All Time-Years.

– Top 3 Hackers at U.S. Department Of Defense All Time-Years.

– Ranked 1st Hacker at Yoti Program.

– Ranked 1st Hacker at Panther Labs.

– Contributed in Improving the Security of Open Source Projects. Reference.

– Owns multiple CVEs (CVE-2022-2714)

Certifications

1. Certified Ethical Hacker (CEH).

2. Certified Security Analyst (ECSA).

3. Certified Forensics Investigator (CHFI).

4. MikroTik Certified Network Associate (MTCNA).

5. MikroTik Certified User Management Engineer (MTCUME).

6. MikroTik Certified Wireless Engineer (MTCWE).

7. Certified Information Security Associate (CISA).

8. Certified Cyber Security Foundation Professional (CCSFP).

9. Certified Professional Penetration Tester (eCPPTv2)

Talks & Workshops

– Participated in the Live Hacking Event Organized by Yogosha and ranked 4th hacker out of 100 competitors (Dubai – UAE) 2022. (reference).

– Attended Gisec Global Cyber Security Conference (Dubai – UAE) 2022. (reference).

– Joined Intersec Event (Dubai – UAE) 2022. (reference).

– Speaker at @Hack Conference (Riyadh – KSA) 2021. (reference).

– Speaker at Red Team Security Summit (India) 2021. (reference) (Watch Talk).

– Workshop at Codi Tech (Lebanon) 2021.

– Workshop at Beirut Arab University (Lebanon) 2021.

Endorsements & Compliments

– The comment of ReSecurity CEO `Gene Yoo` about the Alliance between Cybit Sec and Resecurity (Jul 2022) Reference.

– The comment of HackerOne CEO `Marten Mickos` on my Achievement of ranking 10k Reputation within 1.5 years (Jan 2021) Reference.

– Endorsement by the U.S. Department of Defense after ranking top hacker in their program (Nov 2020) Reference.

– The comment of HackerOne CEO `Marten Mickos` on my Vulnerability that I found in HackerOne website (Feb 2021) Reference.

– Endorsement by `Detectify` about one of my Articles (Jul 2021) Reference.

– Endorsement by `HackenProof` about one of my Articles (Dec 2021) Reference.

News & Articles

– Meet The Lebanese Hacker Ranked Among The Top 100 Globally (May 2021) Article Link.

– Lebanese Hacker Ranking The 1st in the U.S. Department Of Defense (Jan 2020) Article Link.

Acknowledgements

– Acknowledged by 200+ Companies included Hall Of Fames, Certificates of Appreciation and Bounties.

– The Companies that I Ethically Hacked and Acknowledged by Them are :

Pentagon – DARPA – U.S. Department Of Defense – HackerOne – Yogosha – Google – Apple – Facebook – Twitter – LinkedIn – Microsoft – Telegram – SnapChat – IBM – GitHub – Yoti – Exness – BuzzFeed – VMWare – Coinbase – Crypto.com – Currency.com – PayPal – Dialogue – Quantopian – Small Improvements – Radancy – ReCharge – PayFit – Appian – Lattice – Basecamp – Yext – BGL Group – Panther Labs – Colourbox ApS – WINK – Codecademy – AT&T – Stripo – Azbuka Vkusa – Financeit – R3 – Invision Power – OnePlus – Algolia – Coupa – WalletHub – CloudBees – Billie – International Airlines Group – Posit Science – ForeScout Technologies – Gravity Payments – Instacart – Automattic – Angi – Cornershop – Sony – HYPR – Precisely – CompanyHub – Localize – Magisto – 99designs – Share Now – Semrush – ABOUT YOU SE & Co. KG – Self Financial – Brave Software – Unikrn – Cambly – Yelp – Flock Safety – Duolingo – Helium – Foxpass – eToro – Mail.ru – Logitech – GEICO – ChargePoint – Consensys – The New York Times – Clario – Lark Technologies – Turner – Al Jazeera Media Network – Pagar.me – Saxo Bank – Next – Wolt – Evernote – AutoScout24 – BigID – Truebill – Checkout – Time and Date AS – Flipboard – Every.org – Upstart – Chegg – Loom – Khan Academy – AppDirect – FormAssembly – Owox – Top Echelon – Cyber Skyline – Wehkamp BV – Ozon – Aiven LTD – The Client Relationship Consultancy – Courier – Gener8 – Flat – 17hats – Palo Alto – Convention Cat Event – Copper – Acronis – Modex – Earny – Omise – McAfee – Thnks – Blueboard – Deps – Zomato – RhodeCode – Abbvie – Nord Security – Starbucks – Mode Analytics – PUBG – SHEIN – Nintendo – Onna Technologies – Agorapulse – Landing – Remitly – Noon – ok.ru – Blinkist – Hyatt Hotels – MalwareBytes – Reddit – Transfluent – Shopify – Scratch – BlockFi – Chime – Bank Al Etihad – Under Armour – Flourish – Indeed – WP Engine – Sophos – Pinterest – TripAdvisor – Sprout Social – Comcast Xfinity – HealthifyMe – BlueHost – Algorand – Redox – Caviar – Twillio – StackPath – Skyscanner – iRobot – Caffeine – Pantheon – Bitdefender – Upstox – Tradeshift – NASA – Du – Etisalat – Edge – RosarioSIS – Bookwyrm

My Articles

– My Bug Bounty Journey & Ranking 1st in U.S. DoD & Achieving top 100 hackers in 1 year – Oct 17, 2020 (Link)

– My Experience For 2 Years In Bug Bounty Hunting – June 26, 2021 (Link)

– Ultimate Reconnaissance RoadMap for Bug Bounty Hunters & Pentesters – Dec 24, 2021 (Link)

– PII Disclosure of Apple Users [$10k bounty] – Jul 7, 2022 (Link)

Writeups – Reports – Projects

– My HackerOne Disclosed Reports: Hacktivity

– My Reports on: Medium

– My Writeups on: Bugreader

– RCE from APK File: Project Walkthrough

– RCE from IP: Project Walkthrough