Kareem.
Available for Security EngagementsAvailable for Freelance Work

Hi, I'm Kareem Abdelmuttalib

Penetration Tester & Security Researcher

I identify vulnerabilities before attackers do, transforming weaknesses into fortified defenses.

Specializing in ethical hacking, web app security, and threat intelligence.

View My WorkContact Me

Tools I work with:

Kali Linux
Python
OWASP
Linux
Docker
Kareem Abdelmuttalib

About Me

Get to know the person behind the code

Penetration Tester | Web & Network Security Enthusiast

I'm Kareem Abdelmuttalib, a passionate cybersecurity professional with hands-on experience in web application penetration testing and network security. My expertise lies in identifying vulnerabilities, securing systems, and implementing robust defenses against cyber threats.

Equipped with industry-recognized certifications like eJPT, CEH, eCPPT, and more, I specialize in: Web Application Security (OWASP Top 10, Burp Suite, SQLi, XSS), Network Penetration Testing (Nmap, Metasploit, Wireshark), and modern Red Teaming & Ethical Hacking methods and techniques.

Security Philosophy

  • Offensive mindset for defensive strength – Think like an attacker to build stronger defenses.
  • Continuous learning – Staying ahead of evolving threats and attack vectors.
  • Ethical responsibility – Ensuring security without compromising integrity.

Personal Info

👨‍💻

Name

Kareem Abdelmuttalib

✉️

Email

kareem.abdelmuttalib.eg@gmail.com

📍

Location

North Sinai, Egypt

🔍

Status

Open to opportunities

Current Focus

Advancing expertise in advanced penetration testing techniques (Active Directory attacks, cloud security).

My Cybersecurity Skills

I specialize in offensive security and defensive measures. Here are my core technical competencies:

Penetration Testing

Identifying and exploiting vulnerabilities in web applications and networks.

Burp Suite OWASP ZAP Metasploit

Ethical Hacking

Simulating cyber attacks to evaluate system security.

Kali Linux Nmap Wireshark

Vulnerability Assessment

Identifying, classifying, and prioritizing vulnerabilities.

Nessus OpenVAS Nexpose

Security Tools Development

Creating custom scripts and tools for security testing.

Python Bash PowerShell

Network Security

Securing network infrastructure and monitoring traffic.

Firewalls IDS/IPS SIEM

Security Operations

Managing secure development and deployment workflows.

Git GitHub Docker

Security Research & Projects

Explore my security research, penetration testing labs, and cybersecurity tools. Connect with me on LinkedIn for collaborations.

Web App Pentesting Lab

A vulnerable web application designed for security testing, featuring OWASP Top 10 vulnerabilities with guided exploits

OWASP ZAPBurp SuiteKali Linux

Network Vulnerability Scanner

Python-based tool for identifying network vulnerabilities and misconfigurations with automated reporting

PythonNmapWireshark

Active Directory Attack Lab

Homelab environment simulating enterprise AD attacks including Kerberoasting and Golden Ticket attacks

ImpacketMimikatzBloodHound

Malware Analysis Reports

Collection of technical write-ups analyzing recent malware samples with IOC extraction and mitigation strategies

IDA ProCuckoo SandboxYARA

Additional Security Work

eJPT Certification Notes

Comprehensive study notes and lab solutions for eLearnSecurity Junior Penetration Tester certification

Penetration TestingMetasploitReport Writing

OWASP WebGoat Solutions

Documented solutions and bypass techniques for OWASP WebGoat vulnerable application challenges

Web SecuritySQLiXSS

Custom Metasploit Modules

Collection of custom Metasploit modules developed for specific penetration testing scenarios

RubyExploit DevelopmentPayloads

Security Awareness Training

Interactive training materials for employee security awareness covering phishing and social engineering

Social EngineeringPhishingEducation

Experience & Education

My journey in cybersecurity and academic foundation that shaped my technical expertise.

Work Experience

Penetration Tester

Freelance
Remote
2023 - Present
  • Conducted web application penetration tests for clients, identifying critical vulnerabilities (SQLi, XSS, CSRF)
  • Performed network security assessments using Nmap, Metasploit, and Wireshark
  • Delivered detailed reports with CVSS scoring and remediation strategies
  • Contributed to bug bounty programs on platforms like HackerOne

Security Researcher

Personal Projects
Remote
2022 - Present
  • Developed custom scripts for automated vulnerability scanning (Python, Bash)
  • Reverse-engineered malware samples in isolated environments
  • Published write-ups on Active Directory attack vectors and cloud security misconfigurations

IT Security Intern

ITI
Shebin El-Kom, Menoufia
2024 - Present
  • Conducted 50+ vulnerability assessments for web apps using Burp Suite and OWASP ZAP, identifying critical flaws (SQLi, XSS, IDOR).
  • Executed network penetration tests on client infrastructures, uncovering misconfigured firewalls and exposed services (Nmap, Metasploit).
  • Assisted in red team exercises, simulating advanced phishing and lateral movement attacks.

2. Security Researcher

Bug Bounty Hunter
Remote
2024
  • Ranked top 5% on platforms like HackerOne and Bugcrowd for discovering high-impact vulnerabilities (e.g., RCE in SaaS platforms).
  • Developed Python automation scripts to scan for OWASP Top 10 vulnerabilities, cutting manual testing time by 40%.
  • Reverse-engineered malware samples in sandboxed environments, documenting IoCs for threat intelligence.

Education

Bachelor's Degree in Computer Science & AI (In Progress)

University of Sadat City, Egypt
Alexandria, Egypt
2022 - 2026

Specialized coursework: Network Security, Ethical Hacking, Cryptography. Thesis: Exploiting IoT Device Vulnerabilities in Smart Home Systems.

Get In Touch

Have a security assessment need, collaboration idea, or a potential opportunity? Reach out via the form below or contact me directly. I’m available for penetration testing engagements, security consultations, and research collaborations.

Contact Information

For urgent inquiries or vulnerability disclosures, use the encrypted channels listed below.

Location

North Sinai, Egypt

Email

kareem.abdelmuttalib.eg@gmail.com

Phone

+20 1080096438

Follow Me

Send Me a Message