RANA UZAIR AHMAD Cybersecurity Engineer | Penetration Tester | SOC Analyst Islamabad, Pakistan Email: ranauzair370@gmail.com LinkedIn: linkedin.com/in/rana-uzair-ahmad-82b8b6223 GitHub: github.com/Dynamo2k1 TryHackMe: tryhackme.com/p/Dynamo2k1 PROFESSIONAL SUMMARY Seventh semester Cybersecurity student at Air University, Islamabad, with hands-on experience across offensive and defensive security. Conduct penetration testing and vulnerability assessments, build SOC tooling and SIEM detections, and develop security automation in Python and C. Comfortable across the full attack lifecycle: reconnaissance, exploitation, threat hunting, malware analysis, and digital forensics. CompTIA PenTest+ certified, backed by 17 specialized certifications. TECHNICAL SKILLS Offensive Security: Penetration Testing, Web Application Security, Network Penetration Testing, Vulnerability Assessment, OSINT and Reconnaissance, Exploit Development Defensive Security: SOC Operations, SIEM (Wazuh, Splunk, ELK), Threat Hunting, Incident Response, Threat Intelligence, Detection Engineering, Log Analysis Forensics and Malware Analysis: Digital Forensics (Autopsy, CSI Linux), Reverse Engineering (x64dbg), Malware Analysis, Memory and Disk Forensics, Network Forensics (Wireshark) Programming and Scripting: Python, C, C++, Bash, JavaScript, PowerShell, Assembly, Rust, SQL Tools and Platforms: Burp Suite, Metasploit, Nmap, Nessus, SQLmap, OWASP ZAP, Ghidra, Wazuh, Splunk, Kibana, Git, Docker Operating Systems: Kali Linux, Parrot OS, Ubuntu, Debian, Windows Frameworks and Standards: MITRE ATT&CK, OWASP Top 10, NIST Cybersecurity Framework, PTES PROFESSIONAL EXPERIENCE Penetration Tester ZeroxInnovation, Remote April 2025 to Present - Perform vulnerability assessments and penetration tests on client web applications and networks, mapping findings to the OWASP Top 10 and MITRE ATT&CK. - Identify, validate, and safely demonstrate exploitable weaknesses, then prioritize them by business risk for remediation. - Deliver clear technical reports with reproduction steps, severity ratings, and actionable remediation guidance for engineering and management audiences. Cybersecurity Intern, SOC and Security Tooling National Cybercrime and Forensics Lab, NCCS, Air University, Islamabad June 2024 to September 2024 - Operated and tuned SIEM platforms (Wazuh, Splunk, Kibana) to monitor, triage, and investigate security events across lab infrastructure. - Designed and built a custom C based endpoint agent for network scanning, log collection, and active response, extending detection coverage. - Applied C, JavaScript, Python, and MySQL to automate data collection and reporting during live security operations. - Gained hands-on exposure to incident response, threat detection, and digital forensics workflows. Independent Security Researcher and Open Source Developer Self-directed 2023 to Present - Designed and published 34 plus open source security tools spanning packet analysis, SSH hardening, reconnaissance, SIEM agents, and system auditing. - Compete in Capture The Flag events on TryHackMe (Top 3 percent globally) and HackTheBox, strengthening exploitation, forensics, and reverse engineering skills. - Document techniques and writeups to share knowledge with the security community. PROJECTS NetSnoop: Python packet analyzer built with Scapy for real-time capture, multi-protocol dissection, BPF filtering, and PCAP export. CyberGuard Agent: C based SIEM agent for automated log collection, network scanning, and event forwarding, built during the NCCS internship. SSHield: Python SSH hardening toolkit for monitoring access and detecting brute-force attacks. VortexTunnel: Python SSH tunneling tool for secure, encrypted communication channels. SecureDork: Automated Google dorking tool for reconnaissance during penetration testing. System-Auditor: C based auditing tool for automated system configuration and permission checks. EDUCATION BS in Cyber Security Air University, Islamabad 2023 to 2027 (Expected) Relevant coursework: Network Security, Cryptography, Malware Analysis, Digital Forensics, Operating Systems, Secure Software Design. Active member of the university Capture The Flag team. CERTIFICATIONS - CompTIA PenTest+ (PT0-002), Coursera, 2025 - Certified Cybersecurity Educator Professional (CCEP), Red Team Leaders, 2025 - Cyber Threat Intelligence 101, Foundation Threat Intelligence Analyst, arcX, 2025 - CSI Linux Certified Investigator (CSIL-CI), CSI Linux, 2025 - Introduction to Cyber Investigations, CSI Linux, 2025 - Mastering Reverse Engineering and Malware Analysis (REMASM+), Udemy, 2024 - How To Hack The Box To Your OSCP, Parts 1 to 3, Udemy, 2024 - Cybersecurity Threat Hunting for SOC Analysts, Udemy, 2024 - Reverse Engineering 3: x64dbg Graphical Static Analysis, Udemy, 2024 - Become a Digital Forensics Investigator with Autopsy, Udemy, 2024 - The Ultimate Wireshark Course, Udemy, 2024 - MITRE ATT&CK Framework, Udemy, 2024 - TryHackMe Advent of Cyber 2024, TryHackMe, 2024 - Cybercrime and Forensics Lab Internship, NCCS, Air University, 2024 - Digital Pakistan Cybersecurity Hackathon 2024, Ignite and Tech Nation Pakistan, 2024