Abdelrahman Swidan

Future of Egypt · Cairo, Egypt

Led Flutter-based web development inside the organization's digital transformation, turning operational workflows into production software.

• Delivered and maintained internal web-system features as part of a digital-transformation effort
• Designed and implemented a full auditing system for user-activity tracking and compliance
• Translated cross-functional requirements into workflow-driven features
• Refactored legacy code for maintainability and debugged issues across development and production
• Monitored and supported systems to keep them stable and available

Syanatuk — Appliance Maintenance Center · Remote

Architected and shipped a Windows desktop ERP that digitized a maintenance business end to end.

• Built complete device lifecycle management: reception, diagnosis, repair, delivery
• Designed warehouse and spare-parts modules with real-time stock tracking
• Implemented invoicing, revenue reporting, and debt tracking
• Applied role-based access control across four staff roles
• Integrated encrypted Backblaze B2 backups for disaster recovery
• Built a CI/CD pipeline with automated builds, code signing, and installer generation

El Mohamady Educational Platform · Remote

Built a cross-platform e-learning platform used by teachers and students for daily academic work.

• Developed the app with Flutter and Firebase
• Implemented secure authentication, real-time updates, and an online exam system
• Integrated the YouTube API for lesson content delivery
• Applied Clean Architecture and MVVM for long-term maintainability

Digital Egypt Pioneers Initiative (DEPI) · Egypt

Completed a government-backed program focused on real-world penetration testing of web and Android applications.

• Completed PortSwigger Web Security Academy paths (auth, access control, API security)
• Performed Android penetration testing against common mobile attack surfaces
• Ran a full OWASP MASVS compliance assessment on an open-source Android app as the capstone
• Discovered and documented 6+ real vulnerabilities including IDOR, OTP leakage, and Firebase misconfiguration
• Delivered a formal security report with evidence and remediation guidance

HackerOne · Hextree · Remote

Independently researched Android applications, reported real-world findings through HackerOne, and sharpened offensive skills through challenges.

• Triaged CSRF bypass on Bykea: reverse-engineered the APK, extracted a cryptographic key, and forged valid tokens
• Reported a hardcoded Mapbox secret API key in the Inspectorio production APK
• Ranked Top #43 on Hextree, a Google-sponsored Android security platform
• Applied static analysis (JADX, Apktool), dynamic instrumentation (Frida), and traffic interception (Burp Suite)