Name

Asim Alharbi

Handles

0x4s3m / w_4nj

Focus

offensive sec / web

Based

Madinah, SA · UTC+03

Status

accepting work

portfolio · 2026

Asim Alharbi.

I find the bugs your scanners miss, then build the systems that patch them automatically.

Offensive security engineer and bug bounty hunter based in Madinah, Saudi Arabia. Currently lead on Manee — a multi-agent AI cyber defense system for national infrastructure — and ranked #34 quarterly / #133 all-time on bugbounty.sa.

view manee → selected work [email protected]

burp suite caido nuclei amass ffuf sqlmap httpx nmap turbo intruder autorize jwt_tool arjun iptables shap

01 · featured project

/ achievement unlocked

منيع — Manee.

A self-healing cyber shield for national infrastructure. Detects, blocks, explains, and auto-patches threats in < 12s.

role

lead engineer

domain

AI · defense

stage

● live

agents

4

latency

< 12s

stack

multi-agent

achievement unlocked

ID · MNE-001 · CLASSIFIED · PUBLIC BRIEF

منيع

Manee — Impregnable Cyber Defense

what it is

An intelligent, self-healing cyber shield for critical national infrastructure — built as four cooperating AI agents that share signals in real time.

why it matters

Most defenses detect. Manee detects, blocks at the kernel, explains the call, and ships a patch — without waiting for a human.

·· four-agent architecture

agent · 01

Detection AI

Anomaly & signal correlation.

agent · 02

Payload Scanner

Inline request & binary triage.

agent · 03

SOC Analyst

Arabic-native explanations.

agent · 04

Auto-Patch Advisor

Ships hot fixes & rules.

·· key capabilities

Real-time threat detection

Active kernel-level blocking (iptables)

Explainable AI (SHAP)

Auto-patch remediation

Arabic-native SOC analyst

End-to-end response < 12s

built with multi-agent · pillar of national defense

request a private brief →

02 · about

I break web apps the way attackers do — then write the report that helps your team patch it before they do.

I'm Asim Alharbi — online as 0x4s3m. Two-plus years deep in offensive security, with a focus on web-application pentesting and AI-assisted defense. I started in CTFs, learned to translate those primitives into real-world impact on production targets, and now build the systems on the other side of the table.

On bugbounty.sa I've filed 100+ reports across 64+ valid bugs — currently #34 quarterly / #133 all-time. I hunt where the noise is highest: complex auth flows, broken access control, recon dust, and the seams between APIs.

discipline · 01

Web Application Pentest

OWASP-grade, manual-first methodology.

discipline · 02

Bug Bounty Hunting

Recon-heavy. Surface as sprawl.

discipline · 03

AI Cyber Defense

Building Manee — multi-agent shield.

live telemetry · bugbounty.sa

last sync · today

Valid bugs

0

accepted_findings.count

Reports filed

0

reports.submitted

Quarter rank

0

leaderboard.q.current

All-time rank

0

leaderboard.all.current

03 · selected work

Recent findings, ordered by impact — not by date.

Most reports are under NDA. Below is a representative slice of categories and programs where I've delivered impact. Details linked where the program permits public disclosure.

2025 · Q3

xxxxxxxxx.xx

national platform · multi-program

critical Auth bypass · ATO

Multi-step authentication flow abuse

Chained a session-state desync with a recovery-token race to take over arbitrary accounts pre-auth. Triaged, accepted, patched.
2025 · Q2

xxxx.xx

healthcare · patient portal

high IDOR · BOLA

Cross-tenant patient record access

Object-reference predictability allowed authenticated users to query records outside their tenant. Reported through the Saudi national bug-bounty platform.
2025 · Q2

xxxxxx — xxxx.xxxxxx.xxx

aviation · ITSD portal

high Broken access control

Privilege boundary leak in support workflow

Help-desk endpoints exposed admin-only operations to standard users via parameter tampering. Accepted under their bounty program.
2025 · Q1

xxxxxxx xxxxx xxxxxxx

private program · NDA

critical SSRF

Blind SSRF → cloud-metadata exfiltration

PDF render service accepted user-controlled URLs without egress filtering; chained to internal-only services. Coordinated disclosure.
2024 · Q4

E-commerce program

retail · checkout flow

medium Race condition

Coupon stacking via single-packet attack

Sub-millisecond parallel requests bypassed one-per-customer voucher logic. Reported with PoC + Burp Repeater group.
ongoing

Other targets

multiple Saudi programs

disclosed Mixed

60+ additional findings

Stored/reflected XSS, mass assignment, JWT algorithm confusion, OAuth redirect abuse, business-logic flaws — across the xxxxxxxxx.xx platform.
writeups on x →

04 · arsenal

A practical loadout — refined on real programs.

module · 01

Recon & Discovery

Mapping attack surface across subdomains, ASNs, JS endpoints, and forgotten staging.

amasssubfinderhttpx waybackurlsgau

module · 02

Web Exploitation

XSS, SSRF, SSTI, file upload, deserialization, prototype pollution, race conditions.

Burp ProCaidoNuclei XSStrikeDalfox

module · 03

API Security

REST/GraphQL abuse, mass assignment, OWASP API Top-10, undocumented endpoint hunting.

PostmanArjunKiterunnergraphw00f

module · 04

Auth & Access

IDOR/BOLA, JWT misuse, OAuth flow abuse, MFA bypass, session fixation, role escalation.

AutorizeJWT_ToolTurbo Intruder

module · 05

Fuzzing & Discovery

Wordlist craft, parameter mining, brute-forcing hidden paths, technique stacking.

ffufGobusterwfuzzSecListsx8

module · 06

Reporting & Triage

Clear PoCs, repro-first writing, severity scoring (CVSS), remediation that ships.

CVSS 3.1CWEMarkdownLoom PoC

05 · programs

Notable targets, mostly through Saudi Arabia's national platform.

platform

bugbounty.sa

Saudi National Bug Bounty Platform.

100+ reports · Q34 · #133

aviation

xxxxxx

Help / ITSD portal · access control.

xxxx.xxxxxx.xxx

healthcare

xxxx

Patient platform · IDOR / BOLA.

xxxx.xx

private

NDA programs

Fintech · SaaS · gov-adjacent.

disclosed_on_request

06 · certifications

Always in pursuit.

eWPTX

certified

Web Application Penetration Tester eXtreme · INE / eLearnSecurity

Advanced manual web exploitation — SSRF, deserialization, prototype pollution, advanced XSS.

verify on ine

WEB-RTA

certified

Web Red Team Analyst · CyberWarFare Labs

Red-team perspective on modern web stacks — attack chains, recon to post-exploitation.

verify credential

eCPPT

in progress

Certified Professional Penetration Tester · INE / eLearnSecurity

Active study path — network pivot, AD, post-exploitation chains.

Continuous Training

ongoing

PortSwigger Academy · HackTheBox · TryHackMe

Apprentice + Practitioner labs cleared; CTFs & live finals to keep reflexes sharp.

07 · contact

Got a target? Let's talk scope.

primary channel

[email protected]

PGP available on request.

writeups · banter

x.com / w_4nj

Active. DMs open for legit programs.

code · scripts

github.com / 0x4s3m

Recon helpers, PoC repos & tools.

professional

linkedin / asim-alharbi

For program managers & recruiters.

● available · web-app pentest · bug-bounty consult · defense engineering

Asim Alharbi.

منيع — Manee.

I break web apps the way attackers do — then write the report that helps your team patch it before they do.

Recent findings, ordered by impact — not by date.

Multi-step authentication flow abuse

Cross-tenant patient record access

Privilege boundary leak in support workflow

Blind SSRF → cloud-metadata exfiltration

Coupon stacking via single-packet attack

60+ additional findings

A practical loadout — refined on real programs.

Notable targets, mostly through Saudi Arabia's national platform.

Always in pursuit.

Got a target? Let's talk scope.