Jubaer Alnazi Jabin
Verified Expert in Engineering
Security Engineer and Developer
Singapore, Singapore
Toptal member since July 18, 2022
Jubaer, an OSCP specialist, holds a reputable position in information and cloud security. With 5+ years of experience, he discovered the Apple vulnerability (CVE-2023-23526) and identified vulnerabilities in 300+ companies like Apple, Grab, Google, Yahoo, Facebook, and Uber. Jubaer excels in HackerOne, writes insightful articles, and creates Python and Go tools. His expertise spans security compliance (GRC) and Web3 technologies, making him invaluable in securing data and systems.
Portfolio
Experience
- OSCP - 6 years
- Ethical Hacking - 5 years
- Web Security - 5 years
- Network Security - 5 years
- IT Security - 5 years
- Hacking - 5 years
- Penetration Testing - 5 years
- Mobile Security - 3 years
Availability
Preferred Environment
PyCharm, Burp Suite, GitHub, Amazon Web Services (AWS), Docker, Web Security, Ethical Hacking
The most amazing...
...security vulnerability I've discovered was in Grab, where I hacked their payment system and ordered for free, thus earning a reward of $11,000 from them.
Work Experience
Penetration Test Lead
TRS Forensics
- Delivered more than 100+ quality pentest projects on time.
- Implemented different SOPs to ensure productivity in the team.
- Increased the revenue of the company by scaling the pentest workflow.
- Developed multiple tools to exploit vulnerabilities and satisfy clients' needs.
- Managed top tech clients in Singapore to ensure the smooth delivery of the project.
Offensive Security Specialist
Axiata
- Contributed to multiple pentest projects and consulted other teams about security.
- Ensured a secure environment through numerous red team engagements.
- Participated in various social engineering engagements to ensure employee security.
Security Engineer
Binary.com
- Ensured security for the in-house products by performing penetration tests.
- Developed specific tools to help with security and monitoring.
- Conducted security training sessions to educate employees about information security.
- Triaged security vulnerabilities that were reported through the HackerOne program.
Bug Bounty Hunter
HackerOne
- Reported more than 100+ vulnerabilities, and a good percentage were of high severity.
- Ranked in the world's top 100 out of 100,000+ registered hackers in 2018.
- Earned the Hacking the Hackers badge by reporting an issue to HackerOne.
Experience
SniffCon—Ultimate Recon Dashboard
https://github.com/h33tlit/SniffCon-Ultimate-Recon-Dashboard-For-Bug-Bounty-And-PentestingJbin Website Secret Scraper
https://github.com/h33tlit/Jbin-website-secret-scraperParameter-Reflect-Finder
https://github.com/h33tlit/Parameter-Reflect-FinderEducation
Bachelor's Degree in Cybersecurity
Staffordshire University - Staffordshire, United Kingdom
Certifications
Offensive Security Certified Professional (OSCP)
Offensive-Security
Skills
Tools
GitHub
Languages
Bash Script, Python, Python 3, JavaScript
Paradigms
Penetration Testing, DevSecOps
Platforms
Burp Suite, Docker, Amazon Web Services (AWS), Linux
Industry Expertise
Network Security, Cybersecurity
Storage
Database Security, MongoDB
Frameworks
Flask
Other
Web Security, Mobile Security, Ethical Hacking, Bug Triage, OWASP, Security, Wireless, IT Security, Hacking, OSCP, Vulnerability Assessment, Cloudflare, Cloud Security, System Administration, Threat Modeling, Vulnerability Management, Coding, Red Teaming, Social Engineering, Networks
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring