Amirmahdi Mafakheri
I am a Cyber Security Researcher with hands-on experience in penetration testing, vulnerability research, and malware analysis. My focus is on finding, exploiting, and reporting security flaws in real-world systems, as well as building tools that automate and enhance the security testing process.๐ Research Focus
- Bug Bounty & Vulnerability Discovery โ Proven record of identifying and reporting verified vulnerabilities in VDP programs.
- Web & Network Security โ Deep understanding of OWASP Top 10, misconfiguration exploitation, and secure coding principles.
- Android Malware Analysis โ Static and dynamic analysis of malicious applications, behavior mapping, and reverse engineering.
- Reverse Engineering โ Analysis of binaries, protocol reversing, and tool-assisted debugging.
- Security Automation โ Custom Python-based frameworks and reconnaissance tools for large-scale testing.
๐ Skills & Tooling
- Programming & Scripting: Python, Bash, (learning C for low-level security work)
- Custom Security Tools: Recon automation, vulnerability extractors, backup discovery, tamper testing, and data exfiltration utilities.
- OSINT & Threat Intelligence: Shodan, Maltego, Google Dorking, and advanced search operators.
๐ Professional Knowledge
- Network+ and LPIC-1/2 certified knowledge in networking and Linux administration.
- OWASP Top 10 expertise for web vulnerability assessment.
- Bug Bounty Methodologies for structured vulnerability hunting.
- Practical experience with threat hunting, forensic analysis, and incident response workflows.
๐ฌ Contact
ยฉ 2025