CONFIDENTIAL // OSINT DOSSIER CASE #IR-2026 --:--:-- KUL

Dossier 001 · Subject Profile · Classification: Open Source

Ibrahim Radi

aka @ibraradi · "the technical co-founder"

Subject is a security engineer operating on both sides of the line — building attack-surface-management, threat-intel and brand-protection platforms, and conducting offensive operations as a pentester, bug bounty hunter and CTF competitor. Assessed capability: high.

IR
§01Identifiers verified
Full name
Ibrahim Radi
Handle
@ibraradi
Last known location
Kuala Lumpur, Malaysia
Current role
Co-Founder @ Flawtrack
Direct line
+•• ••• ••• ••••
Clearance
AWS-CCP-VERIFIED
§02Intelligence Findings 4 logged
FINDING-001 critical Jun 2023 — Present · Kuala Lumpur, MY

Co-Founder @ Flawtrack

As technical co-founder, I built and managed the platform's entire stack from initial code to production — the core Attack Surface Management (ASM), brand protection, and threat-intel engines, the DevSecOps pipelines, AI/RAG integrations, and the frontend dashboards that turn raw security logs into clear, visual data.

  • Threat Intel: wrote data pipelines and parsers that collected and processed 2B+ stealer leaks.
  • ASM Scaling: built a distributed scanning engine using hundreds of concurrent instances to map large infrastructures (7,000+ assets) in under 3 hours.
  • Brand Protection: created a monitoring system that analyzed 100,000+ network mentions, leading to 1,000+ successful threat takedowns.
  • Client Pentesting: led enterprise penetration tests and delivered technical remediation roadmaps.
  • Sales & Product: ran technical product demos and contributed directly to marketing strategy.
FINDING-002 high Jan 2022 — Aug 2023 · Dubai, UAE

Security Engineer @ DeepStrike

  • Performed penetration testing and security audits for DeepStrike and its clients.
  • Managed AWS and Cloudflare security services.
  • Conducted code reviews, collaborating with developers to remediate vulnerabilities.
  • Integrated security best practices into the SDLC.
  • Wrote technical contributions for DeepStrike's blog.
FINDING-003 info May 2022 — Present · Remote

Bug Bounty Hunter @ Independent

  • Participated in many bug bounty programs, successfully finding and reporting numerous vulnerabilities.
FINDING-004 info Sep 2021 — Present · Worldwide

CTF Player @ Competitive Security

  • Consistently achieved top-percentile rankings across web exploitation, OSINT, and mobile hacking.
§03Capability Matrix 4 domains
Offensive Security
Penetration TestingBug BountyWeb ExploitationOSINTMobile Hacking
Security Engineering
Attack Surface ManagementThreat IntelligenceBrand ProtectionSecure SDLCCode Review
Cloud & DevSecOps
GCPAWSCloudflareCI/CD PipelinesDistributed SystemsAutomation
Engineering & AI
Backend DevelopmentData PipelinesFrontend DashboardsAI / RAG IntegrationThird-party APIs
§04Field Record ctf & competitions
Organizer at IEEE Victoris 1.0 CTF Competition
Ranked 2nd at CyberTalents July CTF (among 210 players)
Ranked 6th at ASCWG 2022 Finals
Qualified to BlackHat MEA 2022 Finals
Qualified to @hack CTF 2021 Finals
Qualified to CyCTF 2022 Finals
§05Verified Credentials education · certs · service
Education
Mansoura University
Faculty of Computer & Information Sciences
2021 — 2025 · Grade: A
Certification
AWS Certified Cloud Practitioner
Amazon Web Services
Service
Cyber Security Head & Instructor
CAT Reloaded
  • Instructed students and managed department operations for a prominent university organization.
  • Executed penetration tests on team infrastructure and student graduation projects.
  • Hosted internal CTF competitions tailored to varying student skill levels.
§06Field Notes 1 recent
Intercepting and Tampering Firestore: building a proxy/repeater for a Firebase mobile app
view all field notes →
§07Establish Comms channels open
→ emailme@ibraradi.me → githubgithub.com/ibraradi → linkedinlinkedin.com/in/ibraradi → x@ibraradi9