👋 Welcome to my portfolio

Nadim Mosharrof

Cybersecurity Analyst | Penetration Tester

I'm a Cybersecurity Penetration Tester passionate about helping businesses protect their sensitive data and systems from cyber threats. With 5+ years of hands-on experience, I specialize in identifying vulnerabilities, executing controlled attacks, and building stronger defenses.

Get in touch See my work

5+ Years exp.

40+ Projects

20+ Clients

About Me

An ethical hacker who thinks
like an attacker.

"The best security feels effortless. The best exploits leave no trace. I study both."

My job involves doing vulnerability assessments, penetration testing, and security audits. I'm really good at using a bunch of different tools and technologies, like Kali Linux, Nmap, Burp Suite, Metasploit and many more. I'm always learning and staying up-to-date with the latest developments in the field.

But it's not just about the technical stuff. I'm also very analytical and detail-oriented. I'm good at spotting vulnerabilities and coming up with strategies to fix them that help my clients achieve their security goals. And I always strive to deliver high-quality work and build long-term relationships with my clients.

If you're ready to take your security to the next level, let's connect and discuss how I can assist you.

Ethical Hacking Penetration Testing Web Security Network Security Linux Python Burp Suite Wireshark Metasploit OSINT

Education

Academic background.

2023 – 2027

B.Sc. in Computer Science & Engineering

Rabindra Maitree University (RMU)

Currently pursuing with a strong focus on cybersecurity fundamentals, secure system design, and applied penetration testing. Active member of cybersecurity labs and technical communities.

2023 – 2024

AWS Cloud Security & Infrastructure Architecture

Amazon Web Services (AWS)

Focused on secure cloud infrastructure design, IAM policy control, VPC segmentation, and DevSecOps practices. Includes AWS Solutions Architect — Associate level concepts with emphasis on security hardening and threat mitigation in cloud environments.

2020 – 2021

Higher Secondary Certificate (HSC)

Kushtia GOVT. Central College

Science group. GPA 4.92/5.0

Experience

Where I've operated.

2023 – Present

Security Researcher / Penetration Tester

Independent / Freelance

Performed web application penetration testing to identify and responsibly disclose security vulnerabilities.
Conducted OSINT investigations and attack surface mapping for web systems and APIs.
Simulated real-world attacker techniques to improve system security posture and mitigation strategies.

2022 – 2023

Cybersecurity Learner / Junior Security Analyst

Self-Directed / Online Labs

Built hands-on experience with Linux environments, networking fundamentals, and system hardening.
Practiced vulnerability analysis using labs and simulated attack scenarios (CTF environments).
Studied OWASP Top 10 and common exploitation techniques in modern web applications.

2021 (Learning Phase)

Cybersecurity Foundations

Self Study

Learned core networking concepts, TCP/IP stack, and basic system administration.
Explored introductory security tools including Wireshark and basic scanning techniques.

Projects

Security work & builds.

Web Security

Vulnerability Lab Testing

Simulated vulnerable web applications to identify SQL injection, XSS, and authentication flaws with remediation reports.

View details →

Security Tooling

Recon & OSINT Toolkit

Automated reconnaissance workflow for domain enumeration, subdomain discovery, and metadata extraction.

View project →

Learning / Research

OWASP Exploitation Notes

Structured documentation of common web vulnerabilities, exploitation patterns, and mitigation strategies.

View notes →

Contact

Let's break systems ethically.