Skip to content
View fathiismail's full-sized avatar
🎯
Focusing
🎯
Focusing
4 followers · 7 following

Block or report fathiismail

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
fathiismail/README.md

πŸ‘¨β€πŸ’» Fathi Ismail

πŸš€ Cybersecurity Consultant | DevSecOps Engineer | Pentester

πŸš€ About Me

I'm a Network and Cybersecurity Engineer specialized in:
βœ… Penetration Testing & Code Review – Offensive security & vulnerability assessment.
βœ… DevSecOps & Secure Development – Automating security in CI/CD pipelines.
βœ… PCI DSS & PCI SSF Compliance – Assisting organizations in securing payment environments and achieving compliance.
βœ… Bug Bounty Hunting – Active on HackerOne & Bugcrowd, discovering and responsibly reporting vulnerabilities.
βœ… Consulting – Assisting organizations in security solution integration and build secure infra architectures .

πŸ”— Links

LinkedIn
GitHub

πŸ› οΈ Skills

πŸ”Ή Offensive Security & Penetration Testing

  • Red Teaming & Vulnerability Assessment: Proficient in tools like Burp Suite, Nmap, Metasploit, OWASP ZAP, Nikto, SQLmap.
  • Web & API Security: Expertise in testing OWASP Top 10 & API security misconfigurations.
  • Network Pentesting: Skilled in MITM attacks, Wireshark analysis, IDS/IPS evasion techniques.

πŸ”Ή PCI DSS & PCI SSF Compliance

  • Security Assessments & Gap Analysis for PCI DSS (infrastructure security, cardholder data protection).
  • Secure Software Development & Assessment for PCI SSF, ensuring compliance for payment software solutions.
  • Pentesting & Security Audits aligned with PCI Security Standards.

πŸ”Ή Security Information & Event Management (SIEM)

  • Hands-on experience with Elasticsearch, Kibana, Logstash, Filebeat, Suricata for log analysis and threat detection.

πŸ”Ή Secure Development & DevSecOps

  • Static & Dynamic Analysis: Semgrep, SonarQube, OWASP ZAP, Nessus, Trivy.
  • Software Composition Analysis (SCA): OWASP Dependency-Check for detecting vulnerable dependencies.
  • Vulnerability Management: DefectDojo for tracking security issues.
  • CI/CD Security: Jenkins, GitLab CI/CD, Kubernetes, Helm, AWS Security Best Practices.

πŸ”Ή Networking & System Administration

  • Security Technologies: VPN, Firewalls, IDS/IPS, Fortigate configuration.
  • Infrastructure Security: Active Directory, DNS, DHCP, FTP, server hardening (Windows/Linux).

πŸ”Ή Programming & Scripting

  • Languages: Python, Java, C, C++, PHP, MySQL, JavaScript, HTML/CSS.
  • Automation & Infrastructure: Ansible, Bash scripting for security automation.

πŸŽ“ Certifications

πŸ“œ Certified in Cybersecurity - (ISC)Β²
πŸ“œ Practical Ethical Hacking - TCM Security
πŸ“œ Jr Penetration Tester Path - TryHackMe
πŸ“œ Developing Secure Software - The Linux Foundation
πŸ“œ NSE 1, NSE 2, NSE 3 - Fortinet
πŸ“œ Certified Professional: Kaspersky Next EDR Optimum (047.12.6)
πŸ“œ Certified Professional: Kaspersky Automated Security Awareness Platform (080.03)

🌟 Additional Activities

πŸŽ™ Voice-over & Narration for audio and video projects.
🎬 Video Editing using Adobe Premiere, Filmora.
🎨 Graphic & Photo Editing with Canva.
πŸ“– Reading & Continuous Learning in cybersecurity, software security, and ethical hacking.

πŸ“Œ Let's Connect!

πŸ”Ή Interested in collaboration or security projects? Feel free to reach out! πŸš€

Popular repositories Loading

  1. DorkKnight DorkKnight Public

    Python 8

  2. DevSecOps_Pipeline_Jenkins DevSecOps_Pipeline_Jenkins Public

    This repository provides a comprehensive guide to implementing a DevSecOps pipeline for secure software development. The guide covers all stages of the pipeline, including the installation of essen…

    2

  3. DevSecOps_pipeline_GitLab DevSecOps_pipeline_GitLab Public

    This project demonstrates a DevSecOps pipeline using GitLab CI/CD. The pipeline includes various stages for SAST, DAST, building Docker images, and deploying applications. This README provides inst…

    2

  4. fathiismail fathiismail Public

    My personal profile

  5. SIEM-with-Suricata-and-ELK-stack SIEM-with-Suricata-and-ELK-stack Public

  6. Tryhackme-WRITE-UPs Tryhackme-WRITE-UPs Public

    this repo contain tryhackme rooms write-ups

    Python