Hack The Box Certified Defensive Security Analyst
Hack The Box
View CredentialOffensive Security Engineer · AI Security Researcher · Security Builder
Red Teaming • AI Security • Identity & AppSec

I am an Offensive Security Engineer, AI Security Researcher, and Security Builder with 2+ years of hands-on experience across enterprise penetration testing, red team operations, applied security research, and AI-assisted security automation.
My professional work includes end-to-end security assessments across web applications, APIs, mobile applications, and infrastructure, alongside red team operations focused on real-world attack scenarios, identity abuse, and security posture improvement. I also build security automation and AI-assisted offensive tooling for vulnerability analysis, alert triage, and black-box penetration testing.
As an independent researcher-builder, I investigate security issues, develop proof-of-concept tools, create reproducible labs, and publish technical research. My work includes identity and access security research involving Microsoft 365 Conditional Access, as well as Oblivion Token, an offensive research tool presented at Black Hat Asia 2026 Arsenal and DEF CON Singapore 2026 Demo Labs.
Selected outputs include 28 CVEs and 3 IEEE publications across Android OAuth 2.0 security testing and applied AI/ML systems. I am open to global opportunities in Offensive Security Research, Vulnerability Research, AI Security, Red Team Engineering, Application Security, and graduate research pathways.


Key Responsibilities & Achievements


Key Responsibilities & Achievements


Key Responsibilities & Achievements
Built and released UploadSmith, a focused Caido plugin for file upload testing workflows. The plugin helps testers quickly mutate Content-Type values, filename extensions, and magic byte payloads directly inside Caido’s request editor.
Presented for DEF CON Singapore 2026 Demo Labs. Oblivion Token is an offensive research utility for practical, repeatable testing of Microsoft 365 Conditional Access (CA) edge cases. It systematizes token-centric workflows to help identify where device, network, or app-context assumptions can fail in real-world environments.
Presented at Black Hat Asia 2026 Arsenal. Oblivion Token is an offensive research utility for practical, repeatable testing of Microsoft 365 Conditional Access (CA) edge cases. It systematizes token-centric workflows to help identify where device, network, or app-context assumptions can fail in real-world environments.
Black Hat Asia 2026 Arsenal and DEF CON Singapore 2026 Demo Labs
Oblivion Token is a focused offensive-research utility that makes Microsoft 365 Conditional Access Policy (CAP) bypass testing practical, repeatable, and scriptable. Designed for red-teamers and security researchers, it systematizes token-centric workflows and exercises policy edge cases to expose where device, network, or app-context assumptions fail including realistic test paths against Microsoft first-party (built-in) applications.
IEEE Region 10 Conference 2024
Poultry farming is crucial to the food chain, and chicken health directly impacts product quality and safety. Diagnosing poultry diseases using polymerase chain reaction is costly, particularly for small farms. To address this, we developed a mobile-based service for farmers, enabling the identification of common chicken diseases from fecal images via a Line account. Our system achieved 86.49% segmentation precision and 95.93% classification accuracy on a large dataset, offering a practical and accessible tool for local farmers.
23rd IEEE International Conference on Software Quality, Reliability, and Security
OAuth 2.0, commonly used for authorization, can be susceptible to CSRF attacks in Android applications. To address this, we developed an Android app to assess other apps' use of the OAuth 2.0 state parameter—a key defense against CSRF. Our analysis, conducted on both Chrome and the default browser, evaluates whether Android apps using OAuth 2.0 are adequately protected against CSRF attacks. Our research aims to protect users by highlighting apps with potentially vulnerable OAuth 2.0 implementations.
The Quick Playground plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.3.1. This is due to insufficient authorization checks on REST API endpoints that expose a sync code and allow arbitrary file uploads. This makes it possible for unauthenticated attackers to retrieve the sync code, upload PHP files with path traversal, and achieve remote code execution on the server.
The Easy Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Gallery SHORTCODE post meta field in all versions up to, and including, 1.5.3. This is due to insufficient input sanitization and output escaping on user-supplied gallery SHORTCODE values. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
The Hr Press Lite plugin for WordPress is vulnerable to unauthorized access of sensitive employee data due to a missing capability check on the `hrp-fetch-employees` AJAX action in all versions up to, and including, 1.0.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to retrieve sensitive employee information including names, email addresses, phone numbers, salary/pay rates, employment dates, and employment status.



Hack The Box
View CredentialRed Team Leaders
View Credential8kSec
View CredentialHands-on assessment, adversary simulation, exploitation, and vulnerability validation.
Security review and testing across web, API, mobile, OAuth, and Android attack surfaces.
Identity-centered cloud security research, policy testing, and Microsoft 365 attack paths.
AI security readiness, LLM threat modeling, and applied machine-learning research experience.
Automation and engineering used to scale testing, reporting, triage, and repeatable workflows.
General software engineering, frontend/backend development, and project delivery experience.
Cloud platforms, deployment, CI/CD, containers, and infrastructure operations.
Turning technical findings into clear executive, engineering, academic, and public-facing output.
Workplace tools used for documentation, presentation, workflow automation, and team collaboration.

Senior project / thesis focused on classifying chicken diseases from fecal images through a LINE Official Account.
Joined the exhibition showcasing B.Sc. ICT International Program student internships. Proudly shared my experience from Ritsumeikan University among esteemed peers. An enriching platform for insights and networking.

University application portfolio and supporting academic showcase.
Download or preview my latest resume.
waris_m@portfolio:~$ cat contact.txt
# CONTACT INFORMATION
# SOCIAL NETWORKS
waris_m@portfolio:~$