Bassem M Bazzoun

As a Senior Cybersecurity Researcher, I have identified and reported over 50 security vulnerabilities to Meta/Facebook through their bug bounty program. I have also attended their invite-only researchers' conferences, where I achieved 2nd place at the 2023 conference held in Seoul, Korea 🇰🇷. Additionally, my contributions to TikTok’s bug bounty program have earned me a spot in their Hall of Fame, where I have since helped protect major companies from security threats. My expertise and achievements have also led me to speak at prominent events such as GISEC in Dubai, UAE 🇦🇪.

Recognized By

Group 129
Group 131
gisec
matchgroup
bitrix

Blogs

lkV87Nn
Delete any Video or Reel on Facebook (11,250$)
Delete any Video or Reel on Facebook (11,250$) Setting my goal While I was attempting to discover more...
Read More
1
Bypass Two-Factor Authentication of Facebook Accounts ($25,300)
Bypass Two-Factor Authentication of Facebook Accounts ($25,300) In this writeup, I will explain how I...
Read More
View All Blogs

On Media & Events

309113206_2263248003840512_6138973813990960086_n (1)
BountyCon 2022
Read More
View All

Protective Services & Training

Web Application Penetration Testing

This service aims to test for security vulnerabilities in your web application, including SQL injection, RCE, IDOR, and XSS, with a focus on the OWASP Top 10. I use a combination of manual techniques and automation tools to improve your application's security. At the end of the assessment, you will receive a detailed report with the identified vulnerabilities and suggested fixes.

Mobile Application Penetration Testing

This service involves testing your mobile application by analyzing API endpoints with Burp Suite, Frida, and Objection. Additionally, I will perform static analysis using JADX to identify and assess Android security vulnerabilities. The assessment will provide a thorough evaluation of your app’s security, including detailed insights and practical recommendations for addressing any identified issues.

Cybersecurity Training & Speaking Engagements

Our Cybersecurity Training & Speaking Engagements service provides expert-led virtual and in-person sessions on web app pentesting, mobile app pentesting, cybersecurity awareness, and bug bounty hunting. We offer detailed workshops and engaging keynotes to enhance your team's cybersecurity knowledge and skills.

Get In Touch

    Scroll to Top