status: open to junior pentest roles

Breaking things
so attackers
can't get there first.

I'm Wamiq Hilal — a Junior Penetration Tester and offensive security researcher. I map attack surfaces, chase vulnerabilities others miss, and turn findings into fixes, through a self-built home lab, VAPT projects, and hands-on reconnaissance tooling.

5Certifications
4Featured Projects
OWASPTop 10 Focus
CEH v13Certified
wamiq@reconlab:~
Penetration Testing /Vulnerability Assessment /Reconnaissance /Network Security / Penetration Testing /Vulnerability Assessment /Reconnaissance /Network Security /
01 — profile

About

Computer Science graduate with a strong focus on offensive cybersecurity, penetration testing, and web application security. I enjoy identifying vulnerabilities, building practical security tooling, and sharpening my skills through hands-on labs and independent research.

My work centers on reconnaissance, enumeration, and vulnerability assessment — the phases where most real-world exposure gets found. I run a self-maintained offensive security lab using Kali Linux, DVWA, and Metasploitable to practice full attack chains safely and repeatably.

Currently building ReconMind, a modular Python reconnaissance framework, while deepening my methodology in bug bounty research and advanced network security.

Quick facts

  • EDU B.Tech, Computer Science & Engineering
  • LOC Srinagar, Jammu & Kashmir, India
  • ROLE Junior Penetration Tester
  • FOCUS Web App Security & VAPT
  • OS Kali Linux · Windows
02 — capabilities

Skills & tooling

Read like a scan report — the services I run, and how well I know them.

PortStateServiceDetail
21/tcpopenoffensive-sec Penetration Testing, VAPT, Reconnaissance, Enumeration, OWASP Top 10, Risk Assessment
22/tcpopentooling Burp Suite, Nmap, Wireshark, Hydra, Nikto, Nuclei, Subfinder, ffuf, Gobuster
53/tcpopennetworking TCP/IP, DNS, HTTP/HTTPS, Routing & Switching, ARP, DHCP, Subnetting, OSI Model
443/tcpopenplatforms Kali Linux, Windows, Linux administration & scripting
8080/tcpopendev Python, Bash, HTML, CSS, JavaScript
03 — proof of work

Featured projects

Built and tested in my own lab environment. Click through to the source.

active
ReconMind

An intelligent, Python-based offensive security reconnaissance and vulnerability assessment framework — automating subdomain discovery, enumeration, and initial attack-surface mapping into a single modular pipeline.

PythonReconVAPTAutomation
View repo
04 — credentials

Certifications

CEH v13

Certified Ethical Hacker

EC-Council
CCEH

Cisco Ethical Hacker

Cisco
GCPC

Google Cybersecurity Professional

Google
CCNA · I

CCNA Fundamentals (Beginner)

Coursera / Packt
CCNA · II

CCNA Fundamentals (Intermediate)

Coursera / Packt
05 — reach out

Let's talk security.

Open to junior penetration testing and security analyst roles. Reach out directly — I reply fast.