Heya!๐ I am Zohaib Masood. I started this blog to document my journey in cybersecurity. I will be updating it regularly with new walkthroughs, learning experiences, and other insights I feel like sharing.
Background
After completing my BSc in Computer Engineering, I worked for over 4 years as an Application Consultant implementing risk solutions for clients in the financial industry worldwide. I had the opportunity to implement enterprise solutions in a regulated industry, being actively involved from pre-sales product demos to go-live, and at times providing post go-live support. Apart from functional aspect, I deployed multi-tier applications for a dozen of clients and noticed recurring issues like password reuse, default credentials and weak password policies for local accounts. Noticing these gaps sparked my interest in exploring cybersecurity, learning about best practices and possible ways to exploit it.
Education
MSc Computer Science - Ontario Tech University
My academic research focused on the safe use of cryptographic libraries, exploring NIST guidelines, and the use of large language models to identify cryptographic vulnerabilities. Alongside my academic work, I actively explored the offensive side of cybersecurity in my free time while working part-time, honing my skills and pursuing certifications.
Publication
Certifications
I am continuously learning and currently working towards the CPTS certification, with plans to eventually pursue the OSCP(if I can fund it myself somehow).
I love the offensive side of cybersecurity and my ultimate goal is to help in improving the security posture for organizations by highlighting weaknesses before they are exploited. I will be documenting my journey on this blog, so you can expect to see walkthroughs of machines, experiences, and lessons learned as I grow in this field.
I love connecting with like-minded professionals. If you would like to connect and talk, you can find me on: