Irfan AliLashari
Cybersecurity student at QUEST with hands-on experience in penetration testing, CTF competitions, and ethical hacking. Active on HackTheBox with 15+ machines rooted.
Building security, one exploit at a time.
I'm a dedicated Cybersecurity student at Quaid-e-Awam University of Engineering, Sciences & Technology (QUEST), Nawabshah — currently in my 4th semester with a CGPA of 3.29.
My passion lies at the intersection of offensive security and real-world defense. I actively compete in CTF challenges on HackTheBox, where I've rooted 10+ machines ranging from medium to insane difficulty — including complex Windows Active Directory environments with techniques like RBCD abuse, ADCS exploitation, and cross-domain attacks.
Beyond HTB, I'm involved with the Quest Cybersecurity Students Society organizing CTF events, and I collaborate on AI research through the IEEE IES Generative AI Challenge 2026.
Academic Background
BS Cyber Security
Pursuing comprehensive studies in cybersecurity including network security, ethical hacking, digital forensics, and secure software development.
Higher Secondary Certificate (HSC) & Secondary School Certificate (SSC)
Completed secondary and higher secondary education with distinction, building a strong foundation in mathematics, science, and computer studies.
Technical Arsenal
Offensive Security
Network & Infrastructure
Tools & Development
Tools & Technologies
What I've Built
Projects that combine security principles with clean engineering.
Dept. of Cyber Security Website
Web Development · Security
Built a responsive and secure department website for QUEST's Cybersecurity department, presented at University Exhibition. Applied security best practices including CSP headers, input sanitization, and performance optimization with interactive UI elements.
Personal Portfolio Website
Web Development · UI/UX
Developed a modern, fully responsive portfolio with dark/light mode support and cross-browser compatibility. Showcased cybersecurity projects while following secure coding standards and modern design principles.
Stock Exchange Management System
Database Design · Backend
Designed a relational database system for stock trading operations using SQL. Implemented features for stock listings, real-time transactions, and portfolio management while ensuring data integrity, security constraints, and full ACID compliance.
Credentials & Achievements
Verified certifications from Google, Cisco, and hands-on achievements on HackTheBox.
Comprehensive introduction to cybersecurity concepts, the importance of security, and career pathways.
Security frameworks, controls, and risk management strategies for enterprise environments.
Deep dive into TCP/IP, network protocols, firewalls, and network-based attack vectors.
Practical Linux command-line skills and SQL fundamentals for security investigations.
Foundational networking concepts including OSI model, routing, and network infrastructure.
Foundational understanding of cybersecurity principles, common threats, and mitigation techniques.
15+ machines completed across Easy to Insane difficulty including AD environments, ADCS abuse, RBCD, and multi-domain attacks.
Let's work together
I'm actively seeking internship opportunities in cybersecurity. Whether you're looking for a pentesting intern, security researcher, or just want to talk security — I'm open to it all.
Internship Inquiry
Looking for a motivated cybersecurity intern with real-world pentesting experience? I'm available for internships in Karachi and remote roles.
Send Email