MD. ASHIK ALAHI

Hi, I'm Ashik Alahi

Penetration Tester & Security Researcher

I specialize in identifying and mitigating security vulnerabilities to protect digital assets. With expertise in ethical hacking, web application security, and network penetration testing, I help organizations strengthen their defenses against cyber threats.

Get In Touch View My Work

About Me

Who I Am

I'm a cybersecurity enthusiast with a passion for ethical hacking and penetration testing. My journey in cybersecurity began with a deep curiosity about how systems can be secured and how vulnerabilities can be exploited ethically to improve security posture.

When I'm not hunting for vulnerabilities, I enjoy contributing to open-source security tools, writing technical blogs about security findings, and participating in bug bounty programs.

"Security is not a product, but a process."

- Bruce Schneier

My Approach

Comprehensive Assessment

Thorough analysis of systems to identify all potential attack vectors and security weaknesses.

Ethical Framework

Strict adherence to ethical guidelines and responsible disclosure practices.

Practical Solutions

Providing actionable recommendations tailored to each client's specific needs and environment.

Professional Experience

Junior Penetration Tester

2024 - 2025

Byte Capsule

  • Conducted comprehensive penetration tests on web applications, identifying critical vulnerabilities including SQL injection and authentication flaws
  • Performed network vulnerability assessments using tools like Nessus and OpenVAS
  • Documented findings in detailed reports with risk ratings and remediation recommendations
  • Assisted in social engineering simulations to test organizational security awareness
  • Participated in red team exercises to evaluate defensive capabilities

Security Researcher

2023 - 2024

Independent

  • Discovered and responsibly disclosed vulnerabilities in popular web applications
  • Contributed to open-source security tools and scripts
  • Developed custom scripts for automating security testing tasks
  • Participated in bug bounty programs on platforms like HackerOne and Bugcrowd

Education & Training

EHP - Ethical Hacking for Professionals

Byte Capsule

Comprehensive training in penetration testing methodologies, tools, and techniques.

Completed March 2025 Certified

HSC - Higher Secondary Certificate

Tamirul Millat Kamil Madrasah

Completed higher secondary education with focus on science and mathematics.

Year: 2022 GPA: 5.00

Technical Skills

Penetration Testing

Web Application Testing Network Penetration Testing API Security Testing Threat Modeling Vulnerability Assessment

Tools & Technologies

Kali Linux

Penetration testing distribution with hundreds of security tools

burp suite

Burp Suite

Web application security testing platform

Nmap

Network discovery and security auditing

Metasploit

Penetration testing framework

Wireshark

Wireshark

Network protocol analyzer for packet-level inspection and troubleshooting

Certifications

EHP (Ethical Hacking for Professionals)

Byte Capsule

Comprehensive certification covering all aspects of ethical hacking and penetration testing.

Issued Mar 2025 ยท No Expiration

eJPT (In Progress)

eLearnSecurity

Junior-level penetration testing certification focusing on practical skills.

Expected Completion: Aug 2025

Get In Touch

Contact Information

Location

Dhaka, Bangladesh

Follow Me