Skip to content
View Muhammad-Tayab's full-sized avatar

Block or report Muhammad-Tayab

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Muhammad-Tayab/README.md

Header

Typing SVG

HackerOne LinkedIn Portfolio Email


Profile Views


β”Œβ”€β”€(n16h70wl55γ‰Ώkali)-[~]
└─$ cat /etc/passwd | grep tayab && cat about.me
Name     : Muhammad Tayab Bashir
Role     : Penetration Tester & Security Researcher
Company  : Cyber Silo Pvt. Ltd.  [Mar 2024 – Dec 2025]
Certs    : PNPT (Passed) Β· CC in progress
Focus    : Web Pentesting Β· Network Security Β· OSINT Β· Active Directory Β· Bug Bounty
Status   : ● ONLINE  |  Available for engagements
Location : Pakistan πŸ‡΅πŸ‡°
β”Œβ”€β”€(n16h70wl55γ‰Ώkali)-[~]
└─$ ./stats --show-all

$ cat bug_bounty/hall_of_fame.txt

Cloudflare Expedia Shutterfly LY Corp Mattermost Modern Treasury Forge Global


$ which --all pentesting-tools

My Skills


Burp Suite Metasploit Nmap Wireshark Caido SQLmap Maltego Hydra Nikto Amass WPScan Nessus John BeEF DirBuster VMware


$ git log --oneline --graph --stat

Β Β 




$ git log --since="1 year ago" --pretty=format:"%ad" | sort | uniq -c

Activity Graph


$ ls -la ./achievements/

Trophies


$ cat certs/training.txt | column -t

Certification Platform Status
🟒 PNTP β€” Practical Network Penetration Testing TCM Security βœ“ PASSED
🟒 CC β€” Certified in Cyber Security (ISC)2 In Progress
Cources Platform Status
🟒 Practical Ethical Hacking β€” The Complete Course Udemy βœ“ VERIFIED
🟒 Bug Bounty Hunting with Burp Suite Udemy βœ“ VERIFIED
🟒 Penetration Testing & Ethical Hacking Cybrary βœ“ VERIFIED
🟒 CompTIA Linux+ Cybrary βœ“ VERIFIED
🟒 Cryptography Cybrary βœ“ VERIFIED
🟒 IELTS International English Language Testing British Council 7.0 BANDS
🟒 Duolingo English Test Duolingo 125 SCORE

β”Œβ”€β”€(n16h70wl55γ‰Ώkali)-[~]
└─$ cat /etc/work_experience
╔══════════════════════════════════════════════════════════════════╗
β•‘  [01/03/2024 – 13/12/2025]  Cyber Silo Pvt. Ltd. β€” Islamabad    β•‘
β•‘  Junior Penetration Tester & Security Analyst                    β•‘
╠══════════════════════════════════════════════════════════════════╣
β•‘  β–Έ Weekly grey-box & black-box web application pentests          β•‘
β•‘  β–Έ OWASP Top 10: SQLi, XSS, CSRF, BAC, Business Logic Flaws     β•‘
β•‘  β–Έ 50+ vulnerabilities identified and mitigated                  β•‘
β•‘  β–Έ Vulnerability reports with CVSS scoring & remediation steps   β•‘
β•‘  β–Έ PCI DSS compliance assessments                                β•‘
β•‘  β–Έ Static code reviews, Nessus data analysis                     β•‘
β•šβ•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•

╔══════════════════════════════════════════════════════════════════╗
β•‘  [ONGOING]  HackerOne & Bugcrowd                                 β•‘
β•‘  Bug Bounty Hunter & Security Researcher                         β•‘
╠══════════════════════════════════════════════════════════════════╣
β•‘  β–Έ Critical vulns reported to Cloudflare, Expedia, Shutterfly    β•‘
β•‘  β–Έ LY Corporation, Modern Treasury, Mattermost, Forge Global     β•‘
β•‘  β–Έ Monetary rewards earned across multiple programs              β•‘
β•‘  β–Έ Profile: hackerone.com/n16h70wl55                             β•‘
β•šβ•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•

Footer

Pinned Loading

  1. cicd-security-vulnerability-gatekeeper cicd-security-vulnerability-gatekeeper Public

    Deterministic, rule-based CI/CD security gate: aggregates secret, dependency and SAST scanners into one policy-driven pass/fail gate with a deduplicated remediation report. Runs locally and as a Gi…

    Python 1

  2. NightOwl-IR NightOwl-IR Public

    Zero-dependency PowerShell incident-response triage toolkit for Windows - 87+ checks across 8 domains, MITRE ATT&CK-mapped, collapsible HTML dashboard.

    PowerShell 1

  3. advalidate advalidate Public

    Native, lockout-aware, multi-protocol credential validation & access-mapping engine for authorized AD penetration testing.

    Python 1

  4. passive-recon-intelligence-engine passive-recon-intelligence-engine Public

    A structured dorking & OSINT checklist that turns one target into 150+ ready-to-fire search queries across Google, Shodan, FOFA, Censys, GitHub and 8 more engines.

    HTML 1