Name: Sabry Saleh Sabry Hassania

Nationality: Palestinian/Egyptian

Birth-date : 14 / 05 / 1985

 

 

About

B.S. Computer Engineering, 6thOctober UniversityEgypt 2008

Graduation Project,Automatic Aircraft control by fiber optics communication medium.

Education

Information Security Officer with 3 years of security experience, more than 5 years of experience in Linux Operating Systems.

Holding the following well known technical certificates:

  • Offensive Security Certified Professional (OSCP).
  • Certified Ethical Hacker (CEH).
  • Red Hat Certified Engineer (RHCE).
  • Cisco Certified Network Associate (CCNA).
  • Microsoft Certified IT Professional Enterprise Administrator (MCITP-EA).
  • Microsoft Certified System Administrator (MCSA).
  • Microsoft Certified Professional (MCP).

Qualifications

Advanced Operations Technology (AOT), Riyadh – KSA 2010 to Present

Information Security Officer

  • Linux Firewall (IPtables) Expert. [Designing, Implementation, Maintenance, Hardening, and Backup]
  • Plans, develops, and implements information technology security programs, policies, and procedures to protect the confidentiality, integrity, and availability of systems, networks, and data.
  • Administer and maintain end user accounts, permissions, and access rights.
  • Check server and firewall logs, scrutinizing network traffic, establishing and updating virus scans, and troubleshooting.
  • Analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required.
  • Conduct Black/Grey/White Box Penetration Testing.
  • Keep current with emerging security alerts and issues.
  • Enforce the ISO-20000 standard controls & Pass Certificate Auditing.
  • Enforce ISO-27001 security standard controls procedures.
  • Enforce Tadawul (Saudi Stock Exchange for Trading) Security controls.
  • Internal Auditor for Tadawul (Saudi Stock Exchange for Trading) Security controls for many broker companies.
  • Build operation guidelines for different network security devices for day-to-day operations.
  • Develop and maintain a Business Continuity and Disaster Recovery plan.
  • Consult administrative and technical staff to determine information needs, data flows, and system definitions.
  • Assist in testing new network security equipment and systems.
  • Prepare technical reports on operation of systems.

 

 

Innovation Applications Company (IAC), Riyadh – KSA 2008 to 2009

Linux Technical Support

  • Implementation, Installation, and Deployment for Linux Servers.
  • Troubleshooting and Solving Client Problems.
  • Linux Courses Instructor.

 

Arabnix, Riyadh – KSA 2008 to Present

Network Security Officer – Freelancer

  • Performing Black/Grey/White Box Penetration Testing.
  • Security Services Implementation and Consultation.
  • Linux Services Implementation, Consultation and Training.
  • Ethical Hacking and Network Defense Training Instructor.

 

 

Web Hosting, Online/Part time support 2006 to 2010

Linux Specialist

  • Infrastructure Building for new Web Hosting Companies.
  • Linux Hosting Services Implementation, Consultation and Training.
  • Securing and Patching with filling business requirements.

 

 

 

 

Work Experience

Programming Background

  • Ruby
  • Python
  • Perl
  • Java
  • C/C++
  • BASH & Shell Scripting

 

 

Databases

  • MySQL
  • PostgreSQL

 

 

Network  Services

  • DHCP
  • DNS (BIND)
  • Apache
  • Nginx
  • Tomcat
  • Subversion (SVN)
  • SMB/CIFS
  • NFS
  • SSH
  • OpenLDAP
  • NIS
  • NTP
  • Squid
  • FTP & FTPS
  • Sendmail, Postfix & Exim,
  • Firewalls (IPTables, Juniper & ISA)
  • OpenVPN
  • Active Directory

 

 

Virtualization

  • VMware (workstation , ESXi)
  • Xen
  • Virtuozzo
  • OpenVZ
  • VirtualBox

 

 

Web Hosting

  • WHM/CPanel Web Hosting Control Panel
  • Plesk
  • WHMCS
  • Webmin

 

 

Security

  • Implement and Deploy a SIEM network solution using OSSIM.
  • Linux System Integrity, Data and File system Encryption.
  • Linux Kernel Patching, Compilation, Tuning, and Hardening.
  • Hardening and Auditing Linux Services, Web Applications, and Firewalls.
  • Install, configure, and maintain IDS/IPS (Snort, Snort-Inline, OSSEC, etc) systems.
  • Install, configure, and maintain network security devices (Firewalls, VPN concentrators, routers, Internet Gateways, and content filtering systems).
  • Vulnerability Assessment and Patch Management (NeXpose, OpenVAS, Nessus, GFI Network, SAINT Exploit, MBSA, etc).
  • Performing Black/Grey/White Box Penetration Testing using different well known security tools such as: Nmap, Metasploit, Rapid7, Paros, Maltego, W3af, etc.
  • Event and Log monitoring (Splunk, Syslog, Ntop, Nagios, munin, etc).
  • Packet filtering and Packet Analysis (Wireshark, tcpdump, etc).
  • Implement Security Policies and procedures (PCI DSS Compliance, ISO27001,etc).
  • Develop and maintain a Business Continuity and Disaster Recovery plans.
  • Juniper firewalls maintenance, review.

 

Platforms

  • Linux (Redhat, CentOS, Fedora, Debian, Ubuntu, etc).
  • Windows (WinXP, Win2k, Win2003, Win2008, Windows7, etc).

 

Hardware

  • Intel Based x86/x86-64 Servers (HP/Dell)
  • Sun SPARC Servers
  • Supermicro servers

 

Skills

Arabic:  Native language.

English: English Fluent Speaking and Writing.

Languages

Download the resume as PDF file.

Download

These resume has been updated in   29 / 6 / 2012

Last Update

 

 

Linked-in Twitter Google+

Connect

Mobile: +966 56 985 9955

 

 

 

E-mail: please use the below form

 

 

 

Your Name (required)

Your Email (required)

Subject

Your Message

captcha

Contact

Operating Systems

  • MCITP: Windows Server 2008 Enterprise Administrator Certification Kit
  • Red Hat Linux Essentials – RH033
  • Red Hat Linux System Administration – RH133
  • Red Hat Enterprise Linux Network Services and Security Administration – RH253

 

Network

  • CCNA: Cisco Certified Network Associate Study Guide

 

Information Security / Penetration testing

  • Cryptography and Network Security (3rd Edition)
  • Cryptography and Network Security (4th Edition)
  • Tactical Perimeter Defense (Security Certified Program)
  • Gray Hat Hacking, Second Edition
  • Hands Ethical Hacking and Network Defense
  • Nmap Network Scanning: The Official Nmap Project Guide
  • Nmap 6 – Network Exploration and Security Auditing Cookbook
  • Metasploit Penetration Testing Cookbook
  • The Web Application Hacker’s Handbook: Discovering and Exploiting Security Flaws
  • The Web Application Hacker’s Handbook: Finding and Exploiting Security Flaws
  • OWASP Web Application testing guide
  • Advanced Penetration Testing for Highly Secured Environments
  • Linux Firewalls: Attack Detection and Response with iptables, psad, and fwsnort
  • BackTrack-4 Assuring Security by Penetration Testing

 

Programming

  • Pragmatic Programmers Programming Ruby 1.9
  • Ruby for System Administration
  • Wicked Cool Ruby Scripts
  • Ruby Pragmatic Working with Unix Processes
  • Ruby Working With TCP Sockets

 

 

Library

These page includes most projects and scripts have been developed by myself. There’s NOT warranty for using this applications/scripts . It could be not the best solution for your case.

 

 Applications/Solutions

 

 

 

Ninja Firewall

Click here to learn more

Objective

The main object of Spare Firewall is to recover any customer’s Linux Firewall -if hardware failure- within less than 3 minutes via remote administration. In-addition,  it save cost of firewall redundancy which is should be deployed for each customer.

Details

Spare Firewall is a stand alone  Linux machine with (CentOS) distribution. The core of spare firewall is “ninja firewall” application which is manage the whole recovering process once employee run it without no need for anymore interaction from him. Ninja firewall application has been written by Ruby programming language it supports Ruby 1.8.x and Ruby 1.9.x versions.

How does it work?

Ninja firewall application restores last current update network and iptables configurations files after make sure from closing customer’s firewall’s port on it’s switch in order to garentee avoidance of any MAC conflict or any unexpected return for the recovered firewall. If we describe the technical steps of ninja firewall work , it’ll be like following steps:

  1.  1. Log-in to customer switch.
  2.  2. Disable the down firewall’s port.
  3.  3. Extract firewall’s backup which has been taken periodically from each firewall to /ninja-firewall/backup/customer_name.tar.gz.
  4.  4. recovering all network configuration and iptables rules.
  5.  5. check file recovering integrity use MD5 hash.
  6.  6. change spare firewall MAC address to the recovered firewall’s MACs (to avoid confusing servers).
  7.  7. Restart network and iptables services to make sure from applying the changes.
  8.  8. Log each Success or failure in log/ninja-firewall.log file .
  9.  9. Ninja-firewall has configuration file to make adding new customers is very simple task.
  10.  10. Ninja-firewall is capable to work with all RHEL/CentOS systems.
  11.  11. Ninja-firewall support HP & Huwaie Switches commands.

 

 

Scripts/PoCs

 

PoC: Build TCP/IP packet from scratch by ruby

TCP/IP builder

Build TCP/IP packet from scratch by ruby , and send syn(or whatever you want) packet.

Projects


  • Google+
  • LinkedIn
  • Twitter