Specializing in cybersecurity, AI, and full-stack development
Senior Full Stack Developer and Security Researcher with +9 years of expertise. Co-founder of Bugreader.com — the leading non-profit cybersecurity platform, and Semicolon Academy — Lebanon's premier cybersecurity training institute. Notable security findings in major platforms including Facebook, NASA, U.S. Department of Health (HHS.gov), and The Tor Project.
Semicolon Academy · Part-time · Remote · Aug 2022 - Present
Layout International · Full-time · Beirut, Lebanon · Remote · Jan 2022 - Jun 2024
Clients: Community Impact (USA), The Japan Times (Japan), SCMP (China), Qatar Airways (Qatar), SRMG Media (KSA), Al-Roeya Media Group (UAE), Daily Sabah (Turkey), Assiyasa Newspaper (Kuwait), Al-Masry Al-Yaum (Egypt)
Bugreader · Self-employed · Aug 2019 - Present
Eduba · Full-time · Remote · Mar 2019 - Dec 2021
Semicolon · Full-time · Remote · May 2016 - Feb 2019
Self-employed · Oct 2014 - Present
Discovered a critical vulnerability allowing attackers to leak visited websites after closing Tor Browser, potentially compromising user privacy and anonymity.
Identified a severe vulnerability that could have allowed attackers to halt the storage of any data sent by website visitors, potentially affecting critical space mission data.
Found SQL Injection and XSS vulnerabilities that could have compromised sensitive health data and patient information.
Uncovered a rate limit vulnerability that could have allowed hackers to steal credits from any phone number, potentially affecting millions of users.
Discovered web server exploitation and rate limit vulnerabilities on login systems, protecting student and faculty data.
Developed and maintains QRPhisher, a browser-based QRLJacking attack tool for educational purposes, helping security researchers understand and prevent QR code-based attacks.
The Leading Cyber Security Hub
The Ultimate Hacking Learning Experience
Browser-based QRLJacking Tool