<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Home on Alsolaiman</title><link>https://alsolaiman.com/ar/</link><description>Recent content in Home on Alsolaiman</description><generator>Hugo -- gohugo.io</generator><language>ar</language><copyright>© 2026 عبدالله السليمان</copyright><lastBuildDate>Mon, 13 Jul 2026 13:56:55 +0800</lastBuildDate><atom:link href="https://alsolaiman.com/ar/index.xml" rel="self" type="application/rss+xml"/><item><title>فلسفة الحسيب والرقيب</title><link>https://alsolaiman.com/ar/articles/philosophy-of-watcher/</link><pubDate>Tue, 08 Jul 2025 00:00:00 +0000</pubDate><guid>https://alsolaiman.com/ar/articles/philosophy-of-watcher/</guid><description>كيف نضبط ذواتنا؟ وكيف نحول بيننا وبين المعصية؟ وكيف نحاولُ.. أو نموتَ، فنُعذرا.</description></item><item><title>هل نجحنا؟</title><link>https://alsolaiman.com/ar/articles/did-we-succeed/</link><pubDate>Sun, 05 Nov 2023 00:00:00 +0000</pubDate><guid>https://alsolaiman.com/ar/articles/did-we-succeed/</guid><description>هل نجحنا في كسر سطوة الحداثة؟</description></item><item><title>XSS as a Password Stealer : A very overlooked XSS attack vector</title><link>https://alsolaiman.com/ar/blogs/xss-as-a-password-stealer-a-very-overlooked-xss-attack-vector-56bd42cbf071/</link><pubDate>Sun, 12 Jul 2026 00:00:00 +0000</pubDate><guid>https://alsolaiman.com/ar/blogs/xss-as-a-password-stealer-a-very-overlooked-xss-attack-vector-56bd42cbf071/</guid><description>Hi everyone, it’s been a while since my last article in 2022: A Deep dive into src=”” attribute leading to a Stored XSS . I have been busy, very. well, this time I come to you with an article after what? 4 years? not to…</description></item><item><title>ThankYou</title><link>https://alsolaiman.com/ar/thankyou/</link><pubDate>Mon, 13 Jun 2022 20:55:37 +0100</pubDate><guid>https://alsolaiman.com/ar/thankyou/</guid><description>&lt;p&gt;شكرا لكم! &lt;a href="https://alsolaiman.com/ar/" &gt;Back to Home&lt;/a&gt;&lt;/p&gt;</description><media:content xmlns:media="http://search.yahoo.com/mrss/" url="https://alsolaiman.com/thankyou/cover.jpg"/></item><item><title>Whoami</title><link>https://alsolaiman.com/ar/whoami/</link><pubDate>Mon, 13 Jun 2022 20:55:37 +0100</pubDate><guid>https://alsolaiman.com/ar/whoami/</guid><description>&lt;p class="lead"&gt;
Principal Product Security Engineer focused on offensive security, secure engineering, and building security programs that scale.
&lt;/p&gt;

&lt;ol class="border-s-2 border-primary-500 dark:border-primary-300 list-none"&gt;






&lt;li&gt;
 &lt;div class="flex"&gt;
 &lt;div
 class="bg-primary-500 dark:bg-primary-300 text-neutral-50 dark:text-neutral-700 min-w-[30px] h-8 text-2xl flex items-center justify-center rounded-full ltr:-ml-12 rtl:-mr-[79px] mt-5"&gt;
 
 &lt;/div&gt;
 &lt;div class="block p-6 rounded-lg shadow-2xl flex-1 ms-6 mb-10 break-words"&gt;
 &lt;div class="flex justify-between"&gt;
 
 &lt;h2 class="mt-0"&gt;Principal Product Security Engineer&lt;/h2&gt;
 
 
 &lt;h3 class=""&gt;
 &lt;span class="flex cursor-pointer"&gt;
 
 
 
 
 &lt;span
 class="rounded-md border border-primary-400 px-1 py-[1px] text-xs font-normal text-primary-700 dark:border-primary-600 dark:text-primary-400"&gt;
 
 2024 – Present
 &lt;/span&gt;
&lt;/span&gt;

 &lt;/h3&gt;
 
 &lt;/div&gt;
 
 &lt;h4 class="mt-0"&gt;
 NielsenIQ
 &lt;/h4&gt;
 
 &lt;div class="mb-6"&gt;
 
&lt;ul&gt;
&lt;li&gt; Lead the enterprise Penetration Testing program&lt;/li&gt;
&lt;li&gt; Drive Product Vulnerability Disclosure (VPD) and Bug Bounty initiatives&lt;/li&gt;
&lt;li&gt; Offensive security across Web, Mobile, APIs, Cloud and AI platforms&lt;/li&gt;
&lt;li&gt; Support Application Security through SAST, DAST, WAF and secure SDLC initiatives&lt;/li&gt;
&lt;li&gt; Partner with engineering teams on secure architecture and design reviews&lt;/li&gt;
&lt;li&gt; Build internal security tooling and automation&lt;/li&gt;
&lt;li&gt; Advance AI Security and secure adoption of LLM technologies&lt;/li&gt;
&lt;li&gt; Mentor engineers and help grow security culture across&lt;/li&gt; product teams&lt;/li&gt;
&lt;/ul&gt;
&lt;span class="flex cursor-pointer"&gt;
 
 
 
 
 &lt;span
 class="rounded-md border border-primary-400 px-1 py-[1px] text-xs font-normal text-primary-700 dark:border-primary-600 dark:text-primary-400"&gt;
 
 Principal Engineer
 &lt;/span&gt;
&lt;/span&gt;


&lt;span class="flex cursor-pointer"&gt;
 
 
 
 
 &lt;span
 class="rounded-md border border-primary-400 px-1 py-[1px] text-xs font-normal text-primary-700 dark:border-primary-600 dark:text-primary-400"&gt;
 
 Product Security
 &lt;/span&gt;
&lt;/span&gt;


&lt;span class="flex cursor-pointer"&gt;
 
 
 
 
 &lt;span
 class="rounded-md border border-primary-400 px-1 py-[1px] text-xs font-normal text-primary-700 dark:border-primary-600 dark:text-primary-400"&gt;
 
 Penetration Testing
 &lt;/span&gt;
&lt;/span&gt;


&lt;span class="flex cursor-pointer"&gt;
 
 
 
 
 &lt;span
 class="rounded-md border border-primary-400 px-1 py-[1px] text-xs font-normal text-primary-700 dark:border-primary-600 dark:text-primary-400"&gt;
 
 AI Security
 &lt;/span&gt;
&lt;/span&gt;




 &lt;/div&gt;
 &lt;/div&gt;
 &lt;/div&gt;
&lt;/li&gt;

&lt;/ol&gt;

&lt;hr&gt;

&lt;h2 class="relative group"&gt;Areas of Expertise
 &lt;div id="areas-of-expertise" class="anchor"&gt;&lt;/div&gt;
 
&lt;/h2&gt;
&lt;div class="flex flex-row flex-wrap items-center space-x-2"&gt;

&lt;div class="flex mt-2"&gt;
 &lt;span
 class="rounded-full bg-primary-500 dark:bg-primary-400 text-neutral-50 dark:text-neutral-800 px-1.5 py-[1px] text-xs font-normal"&gt;
 &lt;span class="flex flex-row items-center"&gt;&lt;span class="mr-1"&gt;&lt;/span&gt;&lt;span&gt;&lt;strong&gt;Offensive Security&lt;/strong&gt; · Web · API · Mobile · Cloud · Internal · External&lt;/span&gt;
 &lt;/span&gt;
 &lt;/span&gt;
&lt;/div&gt;

&lt;div class="flex mt-2"&gt;
 &lt;span
 class="rounded-full bg-primary-500 dark:bg-primary-400 text-neutral-50 dark:text-neutral-800 px-1.5 py-[1px] text-xs font-normal"&gt;
 &lt;span class="flex flex-row items-center"&gt;&lt;span class="mr-1"&gt;&lt;span class="relative block icon"&gt;&lt;svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 448 512"&gt;
&lt;path fill="currentColor" d="M144 144v48H304V144c0-44.2-35.8-80-80-80s-80 35.8-80 80zM80 192V144C80 64.5 144.5 0 224 0s144 64.5 144 144v48h16c35.3 0 64 28.7 64 64V448c0 35.3-28.7 64-64 64H64c-35.3 0-64-28.7-64-64V256c0-35.3 28.7-64 64-64H80z"/&gt;&lt;/svg&gt;&lt;/span&gt;&lt;/span&gt;&lt;span&gt;&lt;strong&gt;Application Security&lt;/strong&gt; · Secure SDLC · Threat Modeling · SAST · DAST · WAF · Security Reviews&lt;/span&gt;
 &lt;/span&gt;
 &lt;/span&gt;
&lt;/div&gt;

&lt;div class="flex mt-2"&gt;
 &lt;span
 class="rounded-full bg-primary-500 dark:bg-primary-400 text-neutral-50 dark:text-neutral-800 px-1.5 py-[1px] text-xs font-normal"&gt;
 &lt;span class="flex flex-row items-center"&gt;&lt;span class="mr-1"&gt;&lt;span class="relative block icon"&gt;&lt;svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 640 512"&gt;&lt;path fill="currentColor" d="M0 336c0 79.5 64.5 144 144 144l368 0c70.7 0 128-57.3 128-128c0-61.9-44-113.6-102.4-125.4c4.1-10.7 6.4-22.4 6.4-34.6c0-53-43-96-96-96c-19.7 0-38.1 6-53.3 16.2C367 64.2 315.3 32 256 32C167.6 32 96 103.6 96 192c0 2.7 .1 5.4 .2 8.1C40.2 219.8 0 273.2 0 336z"/&gt;&lt;/svg&gt;&lt;/span&gt;&lt;/span&gt;&lt;span&gt;&lt;strong&gt;Cloud Security&lt;/strong&gt; · AWS · Azure · Containers · IAM · Kubernetes&lt;/span&gt;
 &lt;/span&gt;
 &lt;/span&gt;
&lt;/div&gt;

&lt;div class="flex mt-2"&gt;
 &lt;span
 class="rounded-full bg-primary-500 dark:bg-primary-400 text-neutral-50 dark:text-neutral-800 px-1.5 py-[1px] text-xs font-normal"&gt;
 &lt;span class="flex flex-row items-center"&gt;&lt;span class="mr-1"&gt;&lt;/span&gt;&lt;span&gt;&lt;strong&gt;AI Security&lt;/strong&gt; · LLM Security · Prompt Injection · AI Risk Assessment · Secure AI Adoption&lt;/span&gt;
 &lt;/span&gt;
 &lt;/span&gt;
&lt;/div&gt;

&lt;div class="flex mt-2"&gt;
 &lt;span
 class="rounded-full bg-primary-500 dark:bg-primary-400 text-neutral-50 dark:text-neutral-800 px-1.5 py-[1px] text-xs font-normal"&gt;
 &lt;span class="flex flex-row items-center"&gt;&lt;span class="mr-1"&gt;&lt;span class="relative block icon"&gt;&lt;svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 640 512"&gt;
&lt;path fill="currentColor" d="M392.8 1.2c-17-4.9-34.7 5-39.6 22l-128 448c-4.9 17 5 34.7 22 39.6s34.7-5 39.6-22l128-448c4.9-17-5-34.7-22-39.6zm80.6 120.1c-12.5 12.5-12.5 32.8 0 45.3L562.7 256l-89.4 89.4c-12.5 12.5-12.5 32.8 0 45.3s32.8 12.5 45.3 0l112-112c12.5-12.5 12.5-32.8 0-45.3l-112-112c-12.5-12.5-32.8-12.5-45.3 0zm-306.7 0c-12.5-12.5-32.8-12.5-45.3 0l-112 112c-12.5 12.5-12.5 32.8 0 45.3l112 112c12.5 12.5 32.8 12.5 45.3 0s12.5-32.8 0-45.3L77.3 256l89.4-89.4c12.5-12.5 12.5-32.8 0-45.3z"/&gt;&lt;/svg&gt;&lt;/span&gt;&lt;/span&gt;&lt;span&gt;&lt;strong&gt;Engineering&lt;/strong&gt; · Python · Automation · CI/CD Security · Security Tooling&lt;/span&gt;
 &lt;/span&gt;
 &lt;/span&gt;
&lt;/div&gt;

&lt;div class="flex mt-2"&gt;
 &lt;span
 class="rounded-full bg-primary-500 dark:bg-primary-400 text-neutral-50 dark:text-neutral-800 px-1.5 py-[1px] text-xs font-normal"&gt;
 &lt;span class="flex flex-row items-center"&gt;&lt;span class="mr-1"&gt;&lt;/span&gt;&lt;span&gt;&lt;strong&gt;Leadership&lt;/strong&gt; · Technical Strategy · Mentorship · Security Programs · Cross-functional Collaboration&lt;/span&gt;
 &lt;/span&gt;
 &lt;/span&gt;
&lt;/div&gt;

&lt;/div&gt;

&lt;hr&gt;

&lt;h2 class="relative group"&gt;Education &amp;amp; Certifications
 &lt;div id="education--certifications" class="anchor"&gt;&lt;/div&gt;
 
&lt;/h2&gt;





&lt;div
 id="accordion-c8a70921927a221e22586a969b714b2b"
 class="border border-neutral-200 dark:border-neutral-700 rounded-lg overflow-hidden"
 data-accordion="open"
 data-accordion-separated="false"
&gt;




 










&lt;details
 class="group border-none"
 data-accordion-item
 open
&gt;
 &lt;summary class="flex w-full cursor-pointer items-center justify-between gap-4 px-4 py-3 text-left text-lg font-semibold text-neutral-900 dark:text-neutral-100"&gt;
 &lt;span class="flex items-center gap-2"&gt;
 
 &lt;span&gt;Bachelor of Computer Science — Computer Networks &amp;amp; Security&lt;/span&gt;
 &lt;/span&gt;
 &lt;span class="accordion-chevron ms-auto flex h-5 w-5 items-center justify-center print:hidden"&gt;
 &lt;span class="relative block icon"&gt;&lt;svg
 xmlns="http://www.w3.org/2000/svg"
 viewBox="0 0 20 20"
 fill="currentColor"
 aria-hidden="true"
&gt;
 &lt;path
 fill-rule="evenodd"
 d="M5.23 7.21a.75.75 0 011.06.02L10 11.168l3.71-3.938a.75.75 0 111.08 1.04l-4.25 4.5a.75.75 0 01-1.08 0l-4.25-4.5a.75.75 0 01.02-1.06z"
 clip-rule="evenodd"
 /&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;/span&gt;
 &lt;/summary&gt;
&lt;div class="px-4 pb-4 text-neutral-700 dark:text-neutral-300"&gt;
 &lt;p&gt;&lt;strong&gt;Universiti Teknologi Malaysia&lt;/strong&gt;&lt;/p&gt;</description><media:content xmlns:media="http://search.yahoo.com/mrss/" url="https://alsolaiman.com/whoami/cover.jpg"/></item><item><title>تواصل معي</title><link>https://alsolaiman.com/ar/contact/</link><pubDate>Mon, 13 Jun 2022 20:55:37 +0100</pubDate><guid>https://alsolaiman.com/ar/contact/</guid><description>&lt;h2 class="relative group"&gt;تواصل معي
 &lt;div id="تواصل-معي" class="anchor"&gt;&lt;/div&gt;
 
&lt;/h2&gt;
&lt;p&gt;&lt;p class="lead"&gt;
abdulah@alsolaiman.com 
&lt;/p&gt;

or on &lt;span class="relative inline-block align-text-bottom icon"&gt;&lt;svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 448 512"&gt;&lt;path fill="currentColor" d="M416 32H31.9C14.3 32 0 46.5 0 64.3v383.4C0 465.5 14.3 480 31.9 480H416c17.6 0 32-14.5 32-32.3V64.3c0-17.8-14.4-32.3-32-32.3zM135.4 416H69V202.2h66.5V416zm-33.2-243c-21.3 0-38.5-17.3-38.5-38.5S80.9 96 102.2 96c21.2 0 38.5 17.3 38.5 38.5 0 21.3-17.2 38.5-38.5 38.5zm282.1 243h-66.4V312c0-24.8-.5-56.7-34.5-56.7-34.6 0-39.9 27-39.9 54.9V416h-66.4V202.2h63.7v29.2h.9c8.9-16.8 30.6-34.5 62.9-34.5 67.2 0 79.7 44.3 79.7 101.9V416z"/&gt;&lt;/svg&gt;&lt;/span&gt; &lt;strong&gt;&lt;a href="https://www.linkedin.com/in/alsolaiman/" target="_blank" rel="noreferrer"&gt;LinkedIn&lt;/a&gt;&lt;/strong&gt;&lt;/p&gt;</description><media:content xmlns:media="http://search.yahoo.com/mrss/" url="https://alsolaiman.com/contact/cover.jpg"/></item><item><title>A Deep dive into src=”” attribute leading to a Stored XSS</title><link>https://alsolaiman.com/ar/blogs/a-deep-dive-into-iframe-src-attribute-leading-to-a-stored-xss-f191c3c67749/</link><pubDate>Tue, 19 Apr 2022 00:00:00 +0000</pubDate><guid>https://alsolaiman.com/ar/blogs/a-deep-dive-into-iframe-src-attribute-leading-to-a-stored-xss-f191c3c67749/</guid><description>السلام عليكم ورحمة الله وبركاته Hi Everyone, it has been a while since I published my last article about AWS Take Over and I am coming with a new article about a deep dive into HTML elements and their attributes. Althou…</description></item><item><title>From .git directory to AWS EC2 network takeover</title><link>https://alsolaiman.com/ar/blogs/from-git-directory-to-aws-ec2-network-takeover-5c0f9df1411c/</link><pubDate>Mon, 03 Jan 2022 00:00:00 +0000</pubDate><guid>https://alsolaiman.com/ar/blogs/from-git-directory-to-aws-ec2-network-takeover-5c0f9df1411c/</guid><description>From .git directory to AWS EC2 network takeover Last week I was performing a penetration test. I was performing the test according to my own methodology and an interesting .git directory was publicly accessible. This .g…</description></item></channel></rss>