About
Hi, I’m Muhammad Zubair
I’m an Offensive Security Professional with 3+ years of hands-on experience in penetration testing, and red team operations. OSCP-certified and currently advancing in malware development to simulate advanced persistent threats.
Certifications
Offsec Certified Professional (OSCP) OffSec — Oct 2024
Certified Penetration Testing Specialist HackTheBox — Feb 2024
Malware Development MalDev Academy — Jul 2025 - Present
Projects
Enterprise Compliance & Monitoring Platform (Essential Eight)
Essentials Project – Led end-to-end development of a cross-platform compliance monitoring solution. Built a Python3 Flask backend with a secure, role-based client dashboard for managing agents. Delivered Windows, macOS, and Linux client agents to assess systems against the Essential Eight framework, with features including reporting, agent blocking, and centralized management.
Certified Penetration Testing Professional (CPTP)
Designed and delivered the Certified Penetration Testing Professional (CPTP) course, a 20-module commercial certification with hands-on labs, officially licensed by NCSC, CREST, and MPG International, and now offered by Tranchulas.
Certified Web Application Security Professional (CWASP)
Designed and delivered the Certified Web Application Security Professional (CWASP) course, a 21-module commercial certification with hands-on labs, officially licensed by NCSC, CREST, and MPG International, and now offered by Tranchulas.
Virtualized Infrastructure with Proxmox VE
Designed and deployed a Proxmox-based virtual lab infrastructure of 30+ custom made vulnerable VMs. Hosted all the lab in a private network and created OpenVPN server to let students interact with the private labs.