cybersecurity manager & offensive security professional

Offensive security professional
and vulnerability researcher

Cybersecurity professional with 300+ accepted vulnerabilities on Bugcrowd, including P1 criticals on hardened targets like Square, Cash App, and FIS. Passionate about web, API, and mobile security with deep experience in red teaming, penetration testing, and vulnerability research.

View Resume Read Blog

Capabilities

Technical Skills

Penetration Testing & Red Teaming

Internal/external network pentesting and red team engagements. Phishing assessments, adversary simulation, and custom payload development.

Cobalt Strike Metasploit Burp Suite Pro Nmap Powersploit

Web & API Security

Deep expertise in web and API vulnerability discovery. 300+ accepted bugs on Bugcrowd with P1 criticals on hardened targets. Focus on access control and authentication flaws.

OWASP Top 10 API Testing Auth Bypass IDOR Bug Bounty

Application Security & Code Review

Secure code review across Java, Python, and JavaScript. SAST/DAST/SCA integration into CI/CD pipelines. Shifting security left in the SDLC.

SAST DAST SCA Java Python JavaScript

Reverse Engineering

Static and dynamic analysis of iOS, macOS, and Android applications. Identifying hardcoded secrets, weak crypto, and hidden functionality.

Ghidra IDA Pro Frida iOS / Android

Security Tooling & Automation

Building custom scripts, scanners, and payloads for assessments. Automating reconnaissance, vulnerability scanning, and exploitation workflows.

Python Bash Nessus Acunetix Custom Tooling

Compliance & Frameworks

Mapping findings to MITRE ATT&CK, OWASP, and CWE. Supporting compliance efforts aligned with FISMA and NIST 800 series standards.

MITRE ATT&CK NIST 800 FISMA CWE

Experience

Resume

Aug 2025 — Present

Application Security Manager

OnDefend — District of Columbia

  • Perform advanced web and mobile application penetration tests, simulating real-world adversarial techniques to identify and validate vulnerabilities
  • Conduct secure code reviews in Java, Python, and JavaScript applications, uncovering logic flaws and insecure patterns early in the SDLC
  • Integrate and operate SAST, DAST, and SCA tooling within CI/CD pipelines to automate detection of security defects
  • Map findings to adversarial tradecraft frameworks (MITRE ATT&CK, OWASP Top 10, CWE) to provide actionable remediation guidance
  • Validate and harden authentication, authorization, and session management controls across enterprise applications

Jan 2025 — Aug 2025

Offensive Cyber Operator

SIXGEN — Arlington

  • Performed internal and external penetration testing to identify vulnerabilities and recommend mitigation strategies across externally exposed networks
  • Conducted phishing assessments and vulnerability risk assessments, simulating adversary behavior to evaluate organizational resilience
  • Utilized advanced offensive tools including Cobalt Strike, Metasploit, Burp Suite, Powersploit, and Nmap to conduct red team engagements
  • Wrote custom scripts and crafted payloads for assessments
  • Supported compliance efforts aligned with FISMA and NIST 800 series standards

Jan 2023 — Jan 2025

Red Team Penetration Tester

Synack

  • Conducted comprehensive security audits and penetration tests for web applications and source code review
  • Executed intricate security tests using cutting-edge tooling and custom scripts
  • Summarized findings in detailed, actionable reports
  • Collaborated with researchers and penetration testers; engaged in and led peer review
  • Used Burp Suite Pro, Nessus, Acunetix, Postman, SoapUI daily

Jun 2019 — Present

Security Researcher

Bugcrowd / HackerOne

  • 300+ accepted vulnerabilities on Bugcrowd, many Critical or High severity
  • Reported and rewarded for multiple P1 Critical vulnerabilities on hardened programs such as Square, Cash App, and FIS
  • Consistently in the Top 10 researchers on a monthly basis

Jun 2021 — Jan 2023

Scientist - Upstream Process Development

Novavax — Gaithersburg

  • Identified and resolved complex technical problems in manufacturing and process development
  • Maintained multiple types of bioreactors from setup and inoculation to harvest
  • Designed and executed process development studies to improve cell culture feeding strategies

Aug 2015 — Present

Firefighter / EMT

Germantown Volunteer Fire Department

  • Tasked with protecting life and property on emergency medical and fire dispatches
  • Performed emergency diagnostic and treatment procedures in high-stress environments

Certifications

  • OSCP Offensive Security
  • CRTO Zero-Point Security

Education

  • B.S. Neurophysiology University of Maryland, College Park — 2019

Languages

  • English Native speaker
  • Arabic Native speaker
  • French Highly proficient
Download PDF Resume

Research & Writeups

Blog

2024-07-13 3 min read

Pre-Auth Full Read SSRF Leaking AWS Keys via Redirect Bypass

How I found a critical SSRF vulnerability that bypassed backend protections via an open redirect, exposing EC2 instance credentials — no authentication required.

SSRFAWSBug BountyCWE-918

Get in Touch

Contact

Email matthew@mzamat.io
GitHub github.com/yourusername
LinkedIn linkedin.com/in/yourusername
Bugcrowd bugcrowd.com/yourusername