Initializing Security Systems...

eCPPTv3 Certified Offensive Security Penetration Testing CTF Competitor

Cybersecurity & Embedded Systems Student | Offensive Security Engineer

Engineering student at ENSA Tetouan specializing in penetration testing (network, web, Active Directory), embedded systems security, and actively competing in CTFs.

View Projects Download CV
m-arjaz@kali:~

└─$ whoami

m-arjaz

└─$ cat about.txt

Cybersecurity & Embedded Systems Engineering Student @ ENSA Tetouan

└─$ cat certifications.txt

eCPPTv3 | eWPTX (In Progress) | Google Cybersecurity | AD Enumeration & Attacks

└─$ ls projects/

API-Security-Testing/ Smart-Parking-IoT/ UART-FPGA/ LetsShare/

└─$ cat current_role.txt

Offensive Security Engineering Intern @ Atlas Defenders (Jan 2026 - Present)

└─$ _

About Me

Cybersecurity & Embedded Systems Engineering Student

Engineering student in Cybersecurity and Embedded Systems at ENSA Tetouan, eCPPTv3 certified, with expertise in penetration testing (network, web, Active Directory) and embedded systems security.

Actively competing in CTFs and conducting offensive pentesting engagements in real-world environments. Currently interning as an Offensive Security Engineer at Atlas Defenders, conducting penetration tests on critical infrastructures.

I work with industry-standard tools including Burp Suite, Metasploit, Nmap, Wireshark, BloodHound, Splunk, and leverage frameworks like OWASP and MITRE ATT&CK for comprehensive security assessments.

0

Certifications & Training

0

CTF Competitions

0

Technical Projects

Academic Projects

Hands-on work in security, IoT, embedded systems, and networking

API Security Testing Project

Black-box security assessment of REST API endpoints to audit input validation. Exploited BOLA vulnerabilities and bypassed Rate Limiting via Cross-API attack chaining.

API Security BOLA REST API Black-box Testing Rate Limiting Bypass
Jan 2026

Smart Parking – IoT & Full Stack Platform

Architected an end-to-end IoT parking system integrating embedded hardware, real-time networking, and a web dashboard. Physical access control via RFID cards and vehicle detection. Real-time communication (HTTP/WiFi) between microcontrollers and a centralized supervision dashboard.

ESP32/C++ PHP/MySQL JavaScript RFID IoT Networking
View on GitHub

UART Controller for FPGA

Design of a synthesizable UART transceiver for FPGAs. Fully functional transmitter/receiver with configurable baud rate and stop bits, verified through simulation.

VHDL ModelSim FPGA UART Digital Design
View on GitHub

LetsShare – P2P File Transfer

Desktop application for secure file transfer over a local area network (LAN). Features include progress tracking, IP validation, transfer history logging, and optimized streaming.

Java TCP Sockets Swing Networking File I/O
View on GitHub

Certifications & Training

Formal validation of cybersecurity and programming skills

eCPPTv3

Certified Professional Penetration Tester — INE Security

Completed - Oct 2025 View Certificate

eWPTX

Web App Penetration Tester eXtreme — INE Security

In Progress

AD Enumeration & Attacks

Active Directory — HackTheBox Academy

Completed - 2025

Google Cybersecurity

Professional Certificate — Coursera

Completed - March 2025 View Certificate

Java Fundamentals

DataCamp (3 Courses)

Completed - Jan 2025 View Certificate

Python for Everybody

Coursera (5 Courses)

Completed - April 2024 View Certificate

Professional Experience

Real-world applications of offensive security and teamwork

Offensive Security Engineering Intern

Atlas Defenders

Jan 2026 – Present | Remote

  • Conducted penetration tests (network, web, AD) on critical infrastructures, identifying and ethically exploiting vulnerabilities.
  • Produced technical reports detailing attack vectors, proofs of concept (PoC), and priority remediation measures.

Cybersecurity Intern

Deltaware Solutions

Nov 2025 – Jan 2026 | Remote

  • Conducted web security audits, OSINT, and phishing simulations in test environments.
  • Drafted vulnerability reports with technical and strategic recommendations.

Team Member - Basmat Al-Khair Group

Amsa Charity Project

April 2024

  • Participated in infrastructure renovation project as part of charity initiative.
  • Collaborated with a team of 10+ volunteers to achieve project objectives.
  • Managed logistics and coordinated tasks across multiple workstreams.

CTFs & Activities

Competitive cybersecurity and community involvement

Apr 2026

DGSSI MAC 2026 CTF

National Representative — ENSA Tetouan

National-level CTF organized by DGSSI and SecDojo. Secured Rank 32 nationally with 1235 points, completing 8/9 machines and capturing 1/3 flags on the Advanced Active Directory box (AD105).

Web Exploitation Active Directory Network
Jan 2026

AUSIM CyberDrill Morocco (Finals)

SecDojo

Intensive 18-hour competition against 28 teams. Advanced assessment covering: Web Exploitation, multi-forest Active Directory attacks, DFIR (Splunk log analysis), Cloud security, and AI agent hacking.

DFIR Cloud Security Active Directory AI Hacking
Feb 2025

North Hacking Day

ENSA Tetouan

Solved challenges in web exploitation, cryptography, and forensics in a competitive CTF organized by ENSA Tetouan.

Web Exploitation Cryptography Forensics
Ongoing

Security Eagles — Member & Co-author

Cybersecurity Community

Member of the Security Eagles community. Co-author of the eJPTv2 book intended for knowledge sharing within the community.

Ongoing

CyberGuardians — CTF Organizer

ENSA Tetouan

Organized the 2nd edition of North Hacking Day (expanded format). Author of challenges for the "Cryptography" category and member of the logistics committee.

Technical Skills

Offensive security, programming, and embedded expertise

Offensive Security

Network Pentesting Web App Pentesting Active Directory Attacks Exploit Development

Programming Languages

Python Java C/C++ PHP JS/HTML VHDL Verilog SQL Assembly (AVR & DSP)

Tools & Frameworks

Burp Suite Metasploit Nmap BloodHound Wireshark Splunk OWASP MITRE ATT&CK

Embedded Systems

ESP32 Development IoT Security VHDL Verilog FPGA Programming AVR Assembly DSP Assembly

Soft Skills

Problem-Solving Critical Thinking Leadership Team Management Adaptability Communication

Education

Academic background in cybersecurity and engineering

Cybersecurity & Embedded Systems Engineering

ENSA Tetouan, Morocco

Expected 2027

Baccalaureate in Physical Sciences

Highest Honors

2019 – 2022

Languages

Communication skills in multilingual environments

Arabic

Native

French

Fluent

English

Fluent

Get In Touch

Open to cybersecurity internships and collaborations

I'm currently seeking internship opportunities in cybersecurity and penetration testing. Feel free to reach out for collaborations or just to connect!

Location

Fnideq, Morocco

Status

Open to Internship Opportunities