drop drop

Brief Info

Hall-of-Fame hacker, widely recognized vulnerability and offensive cybersecurity researcher who discovered over 2,000 vulnerabilities and helped secure over 200 private, public and government organizations worldwide.

Mr. Halabi is a well-known thought leader in the penetration testing and bug bounty field, ranking as one of the Top 50 Hackers in the World and top ethical hacker by the U.S. Department of Defense (DoD) and IBM.

Work Experience

– Managing Director at Resecurity (July 2022, Present) About Resecurity.

– Forming an Alliance with Resecurity through Cybit Sec’s Acquisition (July 2022) News LinkLinkedIn News.

– Founder & Director at Cybit Sec (Feb 2021 – July 2022) Cybit Sec LinkCrunchbase

– Senior Cyber Security Specialist at Fire Phoenix – Dubai (June 2021 – July 2022).

– Red Team Member on Synack (April 2021 – Present).

– Hacker Member on Yogosha (March 2022 – Present).

– Bug Bounty Hunter on HackerOne (June 2019 – Present).

– Cyber Security Specialist at AIY Expert Solutions (Jan 2020 – Sep 2020).

– Research and Development (R&D) at AIY Expert Solutions (2019).

– Software Developer at AIY Expert Solutions (2019).

Achievements

– Discovered Over 2000 Vulnerabilities in Over 200 Companies.

– Acknowledged by 200+ Private, Public, Crypto, Financial Companies, Governments, Departments, Intelligence Agencies and Programs including: U.S. Department of Defense – Pentagon – DARPA – HackerOne – Google – Facebook – Twitter – LinkedIn – Microsoft – Apple – Telegram – Eset – Bitdefender – Yogosha – NASA – SnapChat – Paypal – GitHub – Coinbase – VMWare, etc.

– Listed Among Top 50 Hackers All Time WorldWide.

– Scored 13k Reputation on HackerOne in 2 Years (Jun 2019 – Jun 2021).

– Ranked 1st Top hacker in the World at United States Department Of Defense (2019) – reference

– Ranked 3rd hacker at United States Department Of Defense (2020).

– Ranked 1st Top Hacker at IBM (2020).

– Ranked 7th Hacker at HackerOne Leaderboard (2020).

– Ranked 5th Hacker at HackerOne Leaderboard (2019 Q4).

– Ranked 5th Hacker at HackerOne Leaderboard (2020 Q4).

– Ranked 1st Top Hacker in Lebanon by HackerOne (3 Years in a Row 2019, 2020, 2021).

– Ranked 1st Top Hacker at US Defense Industrial Base All Time-Years.

– Ranked among Top 3 Hackers at U.S. Department Of Defense All Time-Years.

– Ranked 1st Top Hacker in UAE by HackerOne (2022).

– Ranked 1st Top Hacker at Yoti Program.

– Ranked 1st Top Hacker at Panther Labs.

– Ranked among Top 3 Hackers on HackenProof (reference).

– Contributed to Secure Open Source Projects and Owned multiple CVEs: CVE-2022-2714 (reference)

Talks & Workshops

– Speaker at OWASP (UAE) 2024 (Reference).

– Speaker at Ransomware Resilience Conference (Malaysia) 2024 (Reference).

– Exhibitor at DIMDEX (Qatar) 2024 (Reference).

– Speaker at CyberX (Bahrain) 2024 (Reference).

– Speaker at OTSEC (KSA) 2024 (Reference).

– Speaker at CyberX (Qatar) 2024. (Reference).

– Speaker and Exhibitor at World Defense Show (KSA) 2024.

– CTF Organizer and Exhibitor at Arab International Cyber Security Conference (Bahrain). 2023. (Reference).

– Speaker and Exhibitor at Future Tech Event (Oman) 2023. (Video Talk).

– Speaker and Exhibitor at Black Hat Mea (Riyadh, KSA) 2023. (Video Talk).

Speaker at Spire Fusion Event (Riyadh, KSA) 2023. (Reference).

– Featured in Interview and Exhibitor at GITEX (Dubai, UAE) 2023. (Video Talk).

– Speaker at CISO50 Awards (Dubai, UAE) 2023. (Video Talk).

– Podcast with Evoilution cast (Poland) 2023. (Video Talk).

– Speaker at Cyber Security Congress & ISACA UAE (Abu Dhabi – UAE) 2023. (Video Talk),

– Speaker at RedTeam Security Summit (India) 2023. (Video Talk).

– Speaker at Cyber Security Executive (Finland) 2023. (reference).

– Exhibitor at GISEC (Dubai – UAE) 2023.

– Exhibitor at World Police Summit (Dubai – UAE) 2023. (reference).

– Speaker at Cyber Security Congress & ISACA UAE (Dubai – UAE) 2023. (Video Talk).

– Speaker at Leap Event (Riyadh – KSA) 2022. (reference).

– Exhibitor at Arab International Cyber Security Conference (AICS) (Bahrain) 2022. (reference).

– Speaker at Black Hat – Topic: Breaking Mobile App Encryption – (Video Talk).

– Exhibitor at Black Hat Event (Riyadh – KSA) 2022. (reference).

– Represented Resecurity in a Press Video Interview and Magazine by Tahawul Tech (UAE) 2022 (reference).

– Exhibitor at GITEX Global (Dubai – UAE) 2022. (reference).

– Speaker & Exhibitor at ISACA Amman Chapter (Dead Sea – Jordan) 2022. (reference).

– Participated in the Live Hacking Event Organized by Yogosha and ranked 4th hacker out of 100 competitors (Dubai – UAE) 2022. (reference).

– Attended Gisec Global Cyber Security Conference (Dubai – UAE) 2022. (reference).

– Joined Intersec Event (Dubai – UAE) 2022. (reference).

– Speaker at @Hack Conference (Riyadh – KSA) 2021. (reference).

– Speaker at Red Team Security Summit (India) 2021. (reference) (Watch Talk).

– Workshop at Codi Tech (Lebanon) 2021.

– Workshop at Beirut Arab University (Lebanon) 2021.

Endorsements & Compliments

– Receiving an extensive Award from the General – Head of Intelligence after training the Intel Agency and Military (Dec 2023) Reference.

– The comment of ReSecurity CEO `Gene Yoo` about the Alliance between Cybit Sec and Resecurity (Jul 2022) Reference.

– The comment of HackerOne CEO `Marten Mickos` on my Achievement of ranking 10k Reputation within 1.5 years (Jan 2021) Reference.

– Endorsement by the U.S. Department of Defense after ranking top hacker in their program (Nov 2020) Reference.

– The comment of HackerOne CEO `Marten Mickos` on my Vulnerability that I found in HackerOne website (Feb 2021) Reference.

– Endorsement by `Detectify` about one of my Articles (Jul 2021) Reference.

– Endorsement by `HackenProof` about one of my Articles (Dec 2021) Reference.

Certifications

1. Certified Ethical Hacker (CEH).

2. Certified Security Analyst (ECSA).

3. Certified Forensics Investigator (CHFI).

4. MikroTik Certified Network Associate (MTCNA).

5. MikroTik Certified User Management Engineer (MTCUME).

6. MikroTik Certified Wireless Engineer (MTCWE).

7. Certified Information Security Associate (CISA).

8. Certified Cyber Security Foundation Professional (CCSFP).

9. Certified Professional Penetration Tester (eCPPTv2)

10. Award from a General of an Intelligence Agency.

News & Articles

– Meet The Lebanese Hacker Ranked Among The Top 100 Globally (May 2021) Article Link.

– Lebanese Hacker Ranking The 1st in the U.S. Department Of Defense (Jan 2020) Article Link.

My Articles

– My Bug Bounty Journey & Ranking 1st in U.S. DoD & Achieving top 100 hackers in 1 year – Oct 17, 2020 (Link)

– My Experience For 2 Years In Bug Bounty Hunting – June 26, 2021 (Link)

– Ultimate Reconnaissance RoadMap for Bug Bounty Hunters & Pentesters – Dec 24, 2021 (Link)

– PII Disclosure of Apple Users [$10k bounty] – Jul 7, 2022 (Link)

– The ART of Chaining Vulnerabilities – Dec 24, 2023 (Link)

– Hacking Telecom – Aug 12, 2023 (Link)

Writeups – Reports – Projects

– My HackerOne Disclosed Reports: Hacktivity

– My Reports on: Medium

– My Writeups on: Bugreader

– RCE from APK File: Project Walkthrough

– RCE from IP: Project Walkthrough

– My Bug Bounty Course: View