Red Teamer | Penetration Tester | CTF Player

Discover vulnerabilities before attackers do. Professional cybersecurity assessments to strengthen your organization's security posture.

View Services Download CV
Zabed Ullah Poyel

About Me

Dedicated cybersecurity professional with expertise in offensive security

I am a Red Teamer and penetration tester specializing in Web, API, Network, Cloud and AI/LLM application security. With experience in real-world pentesting, CTF competitions, and challenge development, I focus on finding vulnerabilities and strengthening systems. As a team lead and active CTF player, I excel in problem-solving, technical analysis, and continuous learning. I am dedicated to ethical hacking and advancing cybersecurity awareness, including securing modern AI-powered applications against Web LLM attacks and prompt injection.

Red Teaming Vulnerability Assessment Penetration Testing Web Security API Security AI / LLM Security Network Security Cloud Security

Certifications

  • Certified AppSec Practitioner v2 (CAP) — The SecOps Group
  • Certified Network Security Practitioner (CNSP) — The SecOps Group
  • Certified Ethical Hacker & Penetration Tester (CEHPT) — CyberLand Academy
  • Certified Cybersecurity Educator Professional (CCEP) — Red Team Leaders
  • Certified Web Applications Pentester (CWAP) — CyberLand Academy
  • Certified API Hacking Expert (CAPIE) — The XSS RAT
  • Ethical Hacking Essentials (EHE) — EC-Council
  • Web Pen‑Testing & Bug Hunting — Cyber Bangla
  • API Penetration Testing — APIsec University
15+
Project work
80+
Vulnerabilities Found
97%
Client Satisfaction

Achievements & Experience

Showcasing my competitive achievements, honors, and professional experience

CTF Achievements

  • CUET StealthFlags 2025 National CTF: 6th
  • MIST Cyber Drill 2025: 13th
  • BDSec CTF 2025: 22nd
  • BCS ICT FEST 2025: 24th
  • Bugcrowd x Black Hat USA 2025 CTF: 27th
  • THM Industrial Intrusion CTF 2025: 37th
  • More CTF Competition 15+

Awards & Recognition

  • Letter of Recognition (LOR): NASA (2025)
  • Coins Awards: Top 100 performers at Bugcrowd Black Hat USA CTF 2025
  • Hall of Fame: NASA

Experience

  • Management Lead | Penetration Tester: The Black Onion
  • Secretary: Computer Club - National Polytechnic College
  • Cyber Security Internship: CodeAlpha
  • Co-Founder & CTF Player: Team Akatsuki
  • Volunteer: Cyber Bangla

Professional Services

Comprehensive cybersecurity solutions to protect your digital assets

Vulnerability Assessment & Penetration Testing (VAPT)

Comprehensive security assessments to identify vulnerabilities in your systems, applications, and infrastructure. Detailed reports with actionable remediation steps.

  • Automated vulnerability scanning
  • Manual penetration testing
  • Detailed technical reports
  • Remediation guidance

Web Application & API Testing

Specialized testing for web applications and APIs to identify security flaws, authentication bypasses, and data exposure vulnerabilities.

  • OWASP Top 10 coverage
  • API security testing
  • Business logic testing
  • LLM / AI-based app security

Network Penetration Testing

External and internal network assessments, perimeter security evaluations, and wireless network security testing.

  • External network testing
  • Internal network assessment
  • Wireless network testing
  • Network infrastructure security

Cloud Penetration Testing

Comprehensive security assessments for cloud environments including AWS, Azure, Google Cloud, and hybrid cloud infrastructures.

  • AWS security testing
  • Azure penetration testing
  • Google Cloud security assessment
  • Cloud configuration review

CMS Security Audits

Security assessments for Content Management Systems including WordPress, Drupal, Joomla, and custom CMS solutions.

  • Plugin vulnerability assessment
  • Configuration security review
  • Custom code analysis
  • Update and patch verification

OSINT & Digital Reconnaissance

Open Source Intelligence (OSINT) and digital reconnaissance to gather actionable information Conduct organization, its assets, and potential threats.

  • Social Media & Surface Web Profiling
  • Data Breach and Leak Analysis
  • Employee & Organization Recon
  • Dark web and deep web Monitoring

Let's Work Together

Ready to strengthen your cybersecurity posture? Get in touch today.

Address

Chattogram, Bangladesh

Email

zabedullahpoyelcontact@gmail.com

LinkedIn

linkedin.com/in/zabed-ullah-poyel

GitHub

github.com/XploitPoy-777

Medium

medium.com/@zabedullahpoyel