SECURITY RESEARCH & OFFENSIVE TESTING

MD Rabul Sany
// Cyber Security Researcher

Penetration Tester & Bug Bounty Hunter 5+ years experience specializing in web/API vulnerabilities, business logic flaws and Active Directory penetration testing.

whoami

Profile & Impact

Results-driven Cyber Security Researcher and Ethical Hacker with 5+ years of hands-on experience in Vulnerability Assessment, Web & API Penetration Testing, and Bug Bounty Hunting. Highly active on HackerOne and Intigriti with a strong track record of identifying critical vulnerabilities and securing digital assets. Holds industry-recognized certifications including PNPT, CHFI, and CND.

1200+
Reputation Score
15+
Hall of Fames
50+
Bugs Discovered
$10k+
Bounties Earned
cat services.yaml

What I Do

Web App Pentesting

Deep diving into business logic flaws, XSS, and complex Access Control bypasses.

API Security Audit

Rigorous testing of RESTful APIs, identifying IDORs, auth bypasses, and data leaks.

Source Code Review

White-box testing (SAST) of JavaScript to uncover hidden endpoints and secrets.

cat skills.json

Core Competencies

Security Tools

Burp Suite Pro Nmap Metasploit Nessus Wireshark SQLmap Nuclei Ffuf & Subfinder

Offensive Techniques

Web & API Pentesting Bug Chaining WAF Evasion Privilege Escalation AD Pentesting

Programming & Scripting

Python Bash JavaScript SQL
history

Professional Experience

Oct 2023 —
Present
Independent Penetration Tester & Security Consultant
Global Clients (NDA & Contractual)
  • Conducted comprehensive Vulnerability Assessments and Penetration Testing (VAPT) for FinTech, E-commerce and Healthcare platforms following OWASP methodologies.
  • Leveraged PNPT skills to perform internal network and Active Directory (AD) audits, successfully simulating real-world APT behaviors to uncover privilege escalation paths.
  • Delivered executive-level risk reports incorporating CVSS v3.1 scoring and collaborated directly with development teams to ensure effective patch remediation.
Jun 2020 —
Present
Security Researcher & Bug Bounty Hunter
HackerOne & Intigriti
  • Consistently invited to highly confidential, private bug bounty programs due to a high signal-to-noise ratio and strict adherence to NDAs.
  • Specialized in identifying complex Business Logic Flaws and chaining low-severity bugs (e.g., Open Redirect to XSS) to achieve critical impact such as Zero-Click Account Takeover (ATO).
  • Successfully exploited SSRF vulnerabilities in enterprise applications to extract AWS IAM credentials from cloud metadata endpoints.
  • Achieved a reputation score of 1,200+, ranking within the top 10% of researchers on the HackerOne platform by delivering actionable PoCs.
  • Note: Bug bounty profile links and specific vulnerability reports are kept private for strict OPSEC reasons. But verified statistics can be provided upon request.
ls ./projects

Projects & CTF Achievements

Cloud-Based Continuous Reconnaissance Pipeline

Architected a distributed, VPS-based recon framework utilizing Subfinder, HTTPX and custom Nuclei templates. Monitors target attack surfaces 24/7 and automatically alerts on new subdomains, drastically reducing manual discovery time.

Bash VPS/Cloud NDA Protected

Custom Vulnerability Scanner & Exploit Modding

Developed tailored Python tools to scan for specific CVEs across large scopes. Regularly analyze and modify public Proof of Concept (PoC) exploits in Go and Python to evade WAFs and fit specific target environments during assessments.

Python Go NDA Protected

Active Directory Attack & Defense Lab

Built and configured an enterprise-grade AD environment on VMware to practice internal network attacks. Simulated real-world scenarios including Kerberoasting, AS-REP Roasting, LLMNR Poisoning and Pass-the-Hash.

Active Directory VMware Red Teaming

Automated GraphQL & API Fuzzer Framework

Created a robust automation tool to discover hidden GraphQL Introspection queries and map complex REST API endpoints. Capable of mass-assigning payloads to identify deep Insecure Direct Object References (IDORs).

Python API Security NDA Protected

Custom WAF Evasion & Payload Obfuscation Tool

Engineered a specialized Python script to dynamically encode and obfuscate XSS, SSRF and SQLi payloads. Effectively bypassed modern Web Application Firewalls (e.g., Cloudflare, AWS WAF) during black-box penetration testing.

Python WAF Evasion NDA Protected
Swipe horizontally to see more
ls ./blog

Security Write-ups

Swipe horizontally to read more
cat certifications.txt

Licenses & Certifications

Practical Network Penetration Tester
TCM Security
APISec University
cat education.log

Education

Mar 2019 — Jul 2023
Diploma in Engineering
Bodiul Alam Science & Technology Institute
recon-scan.sh
cat contact.info

Get In Touch