Cybersecurity Specialist

Web, Network & Active Directory Pentester

Detail-oriented Cybersecurity Specialist specializing in Web, Network, and Active Directory Penetration Testing. I have a strong foundation in identifying vulnerabilities through hands-on labs and simulations. My goal is to deliver clear, documented findings and practical steps to help secure applications and infrastructures. Passionate about continuous learning and committed to providing thorough security assessments.

About

Education

Bachelor of Computer and Information Sciences | Zagazig University

Department of Information Technology

Relevant Coursework:

Network Security, Operating Systems, Computer Networks, Database Systems, Cloud Computing, Data Structures, Algorithms, Embedded Systems

skills

• Networking & Protocols:TCP/IP, DNS,Network Traffic Analysis (Wireshark),Network Scanning & Enumeration (Nmap).
• Web & API Security: Web Application Testing (OWASP Top 10) , Burp Suite, SQLMap, OWASP ZAP.
• Infrastructure & OS: Windows/Linux Administration, Active Directory Basics, Kali Linux.
• Exploitation & Tools: Metasploit, Netcat, Hashcat.
• Programming/ Scripting: Python, Bash Scripting, C++, Basic JavaScript & SQL

Work Experience

Penetration Testing Trainee | Digital Egypt Pioneers Initiative (DEPI)

• Undertaking a comprehensive 120-hour instructor-led training program specialized in Vulnerability Analysis and Penetration Testing (VAPT).

• Gaining hands-on experience through practical labs on TryHackMe and PortSwigger, simulating real-world attack scenarios and adversary tactics.

• Performing security assessments across three core domains: Network, Web Applications, and Active Directory environments.

• Developing technical proficiency in identifying, exploiting, and mitigating vulnerabilities while preparing professional security assessment reports and remediation recommendations.

Offered Services

🌐Web Application Penetration Testing

🖥️Network Security Assessment

🔑Active Directory Security Auditing

🔍Vulnerability Assessment (VA)

📊Actionable Security Reporting

Technical Projects & Labs

Network Vulnerability Assessment Lab

• Objective: Conducted comprehensive security scanning and manual verification on simulated network environments.
• Key Tasks: Performed service enumeration, identified open ports, and analyzed misconfigurations in Linux and Windows-based systems.
• Tools: Nmap, Nessus, Metasploit.

• Objective: Identified and exploited common web vulnerabilities in controlled lab environments such as PortSwigger and TryHackMe.
• Key Tasks: Tested for SQL Injection, Cross-Site Scripting (XSS), and Broken Authentication to understand attack vectors and remediation strategies.
• Tools: Burp Suite, Gobuster.

​

Web Application Security Testing (OWASP Top 10)

engaya161@gmail.com

+201150942715

www.linkedin.com/in/aya-hassan-ferjani

Contact Me

Do you have any questions?

​

Thank You