About Haider - Haider's Infosec Blog

Haider Qureshi

I’m Haider Qureshi, an application security professional with experience across banking, telecoms, technology, and consulting. My work has focused on secure SDLC, threat modelling, secure design reviews, penetration testing, and cloud security, with an emphasis on embedding security into engineering. I’m currently working in application security for a Bank in London. Over the course of my career, I’ve worked at organisations including Bumble, O2 Telefónica, EY, and AEC. Across these roles, I’ve led and contributed to application security, Penetration testing, Security architecture decisions, Vulnerability management, and the design of security practices that operate effectively in modern development environments. I hold CISSP, ISSAP, and OSCP, and I am currently completing an MSc in Cyber Security at Royal Holloway, University of London. During my early days in Cyber security I used to do Bug bounties & Penetration testing. This blog is a place to write clearly about security engineering, application security

Linkedin: https://linkedin.com/in/-1337

Upwork: https://www.upwork.com/freelancers

OSCP

CISSP

CISSP

ISSAP

[…] CISSP background […]

[…] Linux Privilege Escalation using weak NFS permissions: t Linux Privilege Escalation using weak NFS permissions in “/etc/exports”. by Haider…

[…] Threat modelling is the process of identifying, analyzing, and mitigating potential security threats to a system or application. In…

Hi H4ck3rM4n, I was pointing out that their sales pitch of being the biggest platform in Europe is actually not…

For Intigriti you state "They call themselves the Europe’s number 1 bug bounty platform, which I find to be an…