Hi, I’m Rokibul
a Penetration Tester & Cybersecurity Specialist

I am a penetration tester and cybersecurity specialist with progressive experience across defensive and offensive roles. My career began at MakeMyPrivacy (Feb 2020–Oct 2021) where I performed vulnerability scanning, log analysis, packet capture and first-line incident response. At TechForing (Oct 2021–Sep 2022) I expanded into vulnerability management, digital forensics and assisted penetration testing. At DITECH (Oct 2022–Mar 2024) I led threat detection, SIEM-driven investigations, system hardening and the vulnerability lifecycle. Most recently at CodeZain (Apr 2024–Sep 2025) I conducted full-scope web, API, mobile, network and cloud assessments, validated findings in lab environments and delivered CVSS-scored, MITRE ATT&CK–mapped reports with prioritized remediation.

I am currently focused on maturing end-to-end red-team and penetration testing capabilities, covering reconnaissance, exploitation, post-exploit validation and clear reporting. I work with standard toolchains and practices including Burp Suite, OWASP ZAP, Nmap/Masscan, Metasploit, MobSF/Frida for mobile analysis, Nessus/OpenVAS, and scripting in Python/Bash, and I align assessments to OWASP and CIS benchmarks. I combine practical defensive insight with hands-on offensive testing to produce detection-aware, actionable findings. I am available for penetration testing or red-team roles in Malaysia and open to remote opportunities while continuing to upskill toward full offensive proficiency.

Contact Me Book A Free Consultation

My career journey so far

My career trajectory and responsibilities were outlined across all listed roles and job positions.

Download CV

Feb 2020 – Oct 2021

Cybersecurity Analyst

MakeMyPrivacy Limited

I started my cybersecurity journey at MakeMyPrivacy, where I focused on vulnerability scanning, system monitoring, and incident response. I analyzed network traffic, performed malware inspection, and maintained log reviews to detect anomalies. This experience helped me understand digital forensics, endpoint protection, and security reporting, forming a solid foundation in defensive operations and security best practices.
Oct 2021 – Sep 2022

Cybersecurity Engineer

TechForing Limited

At TechForing, I advanced into hands-on security engineering, supporting vulnerability assessments, risk analysis, and penetration testing. I worked closely with senior engineers to secure networks, perform forensic analysis, and strengthen system resilience. Using tools like Nessus, Wireshark, and Burp Suite, I contributed to developing secure configurations and compliance-aligned processes for enterprise and client environments.
Oct 2022 – Mar 2024

Cybersecurity Specialist

DITECH Limited

At DITECH, I took ownership of security monitoring, threat detection, and vulnerability management. My responsibilities included SIEM investigations, patch coordination, and compliance with CIS and ISO standards. I collaborated with technical teams to remediate high-risk findings, improve detection accuracy, and optimize logging and response workflows—helping enhance overall infrastructure security and operational reliability.
Apr 2024 – Sep 2025

Penetration Tester

CodeZain Limited

At CodeZain, I transitioned into offensive security, performing web, API, network, and cloud penetration testing. I executed reconnaissance, exploitation, and post-exploit validation using tools such as Burp Suite, Metasploit, and Nmap. I produced CVSS-rated, MITRE ATT&CK–mapped reports that translate technical findings into business impact, combining practical red-team testing with strong defensive awareness to improve resilience.

Check my Github Repositories

Explore my GitHub repositories focused on cybersecurity. You'll find tools for penetration testing, malware analysis, incident response, secure coding practices, and network security. Feel free to browse, use, and contribute to these projects to enhance your cybersecurity knowledge and defenses.

Follow me on Github

A foundation you can always trust

❖ Over the years, I’ve worked with clients across the globe to deliver practical, reliable, and results-driven cybersecurity solutions. My experience spans more than 400 successfully resolved cases and partnerships with 70+ international clients, each reflecting my commitment to securing systems and strengthening digital trust.

❖ I’ve collaborated with individuals, startups, and enterprises to identify vulnerabilities, conduct penetration testing, and implement remediation strategies tailored to each environment. By combining analytical precision with hands-on technical execution, I help organizations enhance their security posture and protect what matters most — their data and reputation.

❖ My work focuses on transparency, clear communication, and dependable service — values that have helped build long-term professional relationships and consistent client satisfaction. Whether assessing complex networks or guiding teams through mitigation, I approach every engagement with the same dedication to accuracy and measurable improvement.