Skip to content
View 0xRahim's full-sized avatar
9 followers · 3 following

Achievements

Achievement: Pull SharkAchievement: YOLOAchievement: Starstruck

Achievements

Achievement: Pull SharkAchievement: YOLOAchievement: Starstruck

Block or report 0xRahim

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
0xRahim/README.md

Hi — I’m 0xRahim 👋

Security researcher · Bug bounty hunter · Developer

Website shields.io badge Top Languages Top Languages

Pragmatic, security-first developer with a passion for uncovering real-world vulnerabilities in web and mobile applications. I spend my time auditing business logic, hunting OAuth and web-layer flaws, and building practical, security-conscious products that solve real problems..

Quick badges / social

GitHub followers Twitter Follow HackerOne

What I do

  • I develop low-level systems and performance-critical projects in Rust.
  • I build full-stack web applications using Next.js.
  • I create native Android applications with Java and Kotlin.
  • Hunt for vulnerabilities in Android, web, and web3 applications.
  • Audit OAuth flows, API designs , and client-side/server-side auth logic.

Core Skills & Tools

  • Backend & Systems: Design and build scalable services, APIs, and system components with performance and reliability in mind.
  • Languages & Technologies: Develop production-ready software using Rust, JavaScript.
  • Web & Application Development: Architect and implement full-stack applications with clean structure and maintainable codebases.
  • Tooling & Workflow: Use Git-based workflows, structured code reviews, CI-friendly practices, and reproducible builds.
  • Security & Auditing: Perform threat modeling, analyze OAuth flows, conduct manual code reviews, and develop exploit PoCs.

Focus areas

  • Building performance focused applications in rust
  • Coding native android applications.
  • API security reviews and secure coding practices

Selected projects & write-ups

  • Phrase — CLI password manager
  • TradeNote - Trade journaling and account tracking application
  • Blog — My blog posts on application security

Socials

  • GitHub: https://github.com/0xRahim
  • Twitter: https://twitter.com/0xRahim_

Pinned Loading

  1. Argus Argus Public

    Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection

    HTML 13 2

  2. PHRASE PHRASE Public

    A simple password manager for normal use

    Python

  3. TradeNote TradeNote Public

    Platform that centralizes trade journaling and analytics

    HTML