Skip to content
View i1zco's full-sized avatar
🎯
Focusing
🎯
Focusing
2 followers · 4 following

Block or report i1zco

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
i1zco/README.md

Cybersecurity Student & Aspiring Security Engineer

About Me

Hello, my name is Rawad Raool.

  • Education: Cybersecurity Student | University of Aden.

  • Goal: Learning to build resilient and secure infrastructures and auditing code for vulnerabilities.

Networking & Defense Skills

  • Network Security Lab: Deployed a pfSense firewall to segment local networks using VLANs.

  • SIEM Integration: Configured Syslog to export firewall logs to Splunk for real-time traffic analysis.

  • Traffic Routing: Implemented VPN tunnels and NAT policies to secure sensitive devices.

  • Intrusion Prevention: Fine-tuned IPS/IDS (Suricata/Snort) rules to detect malicious signatures.

Web Security

PHP backends && Plugins

Security research, source code review, and proof-of-concept development for PHP plugin vulnerabilities.

Application Layer Defense (WAF)

To provide multi-layered security, I focus on implementing Web Application Firewalls (WAF) to filter and monitor HTTP traffic between a web application and the Internet.

1. Edge Security (Cloudflare CDN)

  • DDoS Mitigation: Using Cloudflare to absorb large-scale volumetric attacks before they reach my origin server

  • Global CDN: Speeding up content delivery while hiding the origin IP address of the server behind the pfSense gateway.

  • Custom Firewall Rules: Blocking traffic based on Country (Geo-blocking) or specific User-Agents.

2. Local Inspection (OWASP ModSecurity)

  • Deep Packet Inspection: Implementing ModSecurity as an engine for Apache/Nginx to act as a host-based WAF

  • OWASP Core Rule Set (CRS): Utilizing pre-configured rules to protect against the "OWASP Top 10" vulnerabilities, such as:

      • SQL Injection (SQLi)

  • Cross-Site Scripting (XSS)

  • Local File Inclusion (LFI)

  • PHP Object Injection (POI)

Apache or Ngnix web server

protect against weak configurations, and implement access control and permissions policies.

For vulnerability research, I follow the OWASP Top 10 standards to identify and mitigate PHP security risks.

My Skill Set

Development

Backend
Frontend

Cybersecurity

Security
Cisco pfSense

Systems

Linux Tools

GitHub Stats

Rawad stats

Pinned Loading

  1. Secra Secra Public

    Secra is a lightweight Python-based CVE vulnerability scanner that performs CPE-to-CVE mapping, software version risk analysis, and security intelligence reporting for cybersecurity researchers and…

    Python 4 1

  2. zoomeye-recon zoomeye-recon Public

    ZoomEye Recon is a passive reconnaissance tool that uses ZoomEye API to discover domain assets, subdomains, and related IP addresses. The tool is designed for OSINT research and educational securit…

    Python 2

  3. wishlist-member-vuln-analysis wishlist-member-vuln-analysis Public

    Analysis of an Unauthenticated Arbitrary File Write vulnerability in Wishlist Member plugin (<=3.25.1) with potential RCE. Educational and responsible disclosure report.

    2

  4. wishlist-poc wishlist-poc Public

    Wishlist Member Arbitrary File Read via Directory Travesal <= 3.25.1

    Python 2