Miraziz Ochilov

Information & CyberSecurity Specialist

Hi, my name is Miraziz Ochilov. I am a 20 years old Junior Information & Cyber Security Specialist currently looking for a job in Tashkent.

about me image

About

A Junior Cybersecurity & Information Security Specialist with strong interest in penetration testing, SOC analysis, and protecting systems against cyber threats. I have hands-on experience with Linux, Windows> To stay sharp and relevant, I regularly solve Capture The Flag (CTF) challenges, follow the latest IT and cybersecurity developments, and track newly discovered vulnerabilities. My goal is to grow into a skilled penetration tester and contribute to building more secure environment Outside of cybersecurity, I enjoy reading books, listening to music, gaming, and podcasts, which help me stay balanced and inspired. I see myself as someone committed to making the world a more secure place for the next generation — even if the effort goes unnoticed.

Portfolio

Homemade projects to become the best

Acunetixportfolio image

Acunetix

Acunetix

I use Acunetix to analyse websites for potential vulnerabilities so the website can either be attacked or inform the website owner with security solutions.

Burp Suiteportfolio image

Burp Suite

Burp Suite

I use Burp Suite to find vulnerabilities in websites by using their SQL injections, No-Redirect and SSRF tools.

Nmapportfolio image

Nmap

Nmap

I use Nmap to analyse Website and Server details like Port statuses in order to inform owners about closing ports that can potentially be exploited.

Wiresharkportfolio image

Wireshark

Wireshark

I use Wireshark to analyse incoming network traffic and investigate handshake packets.

SQLMapportfolio image

SQLMap

SQLMap

I use SQLMap to retrieve Database and Admin Panel information of SQL enabled website.

Services

One of my finest specialties

Network Attacks

I'm able to use some powerful set of tools and methods like Airmon-ng, Evil Twin, Bruteforce, Wireshark and Mitm. These allow me to conduct a range of attacks and analysisses on networks, identify vunerabilities and potential entry points for unauthorized access.

Password Attacks

I'm able to use multiple techniques in order to attack passwords like Cryptography, Pass-The-Hash, Bruteforce and Phising attacks. These allow me to intercept accounts with the so called secure passwords.

Website Attacks

I'm able to use vulnerabilities to my advantage like SQL- and XSS injections, SSRF, No-Redirect, Wordpress vulnerabilities and Web Shells. These allow to gain unauthorized access to Databases, Admin panels and Server Backdoors.

Server Attacks

I'm able to use powerful set of tools and methods like DNS Floods, TCP/UDP attacks, Nmap, FTP/SSH attacks and Firewall Bypasses (Nmap). These allow me to gain unauthorized access to servers and clients and put them offline.

Skills

Mastering skills that are beyond legal

Network Mapper 90%
Professional
2 years experience
Brute Force Attacks 70%
Professional
2 years experience
Linux (Debian) 70%
Intermediate
3 years experience
Firewalls, proxies, IDS/IPS 60%
Intermediate
1 years experience
50%
Intermediate
3 years experience
Burp Suite 40%
Beginner
1 years experience
Python 30%
Beginner
1 years experience

Experiences

Work Experience

2024-2025

Information Security Specialist & System administrator

ZumaPharma

My role ensures the secure and seamless operation of IT systems, safeguarding data and infrastructure while enhancing the company’s efficiency, resilience, and productivity.

  • Implemented cyber security measures to strengthen organisational resilience and protect critical systems.
  • Configured and managed Workgroup & Active Directory to ensure secure user authentication and access control.
  • Designed, configured, and troubleshooted LAN, WAN & VLAN networks for reliable connectivity.
  • ISO 27001 standards
  • LAN, WAN & VLAN configuration and troubleshooting.
  • Deployed and maintained VPN solutions (IPSEC, MPLS, Site-to-Site) to secure remote communications.
  • Maintained secure and efficient IT systems, combining system administration with information security practices...
Certificates

Experiences

Education

2021 - 2027

Information Security Management

International Islamic Academy of Uzbekistan

Enrolled in a part-time Information Security Management program, attending intensive 40-day sessions each year while continuously developing my skills in cybersecurity and risk management.

Experiences

Courses

2021

Python

Najot ta'lim

>While taking the Najot Ta'lim Python Course, I was tested on the following sections

  • Python syntax and programming fundamentals.
  • Data types, variables, and operators.
  • Control structures: conditions and loops.
  • Functions and modules.
  • Working with files and exceptions.
  • Object-Oriented Programming (OOP) in Python.
Certificates
2023-2024

CyberSecurity

Haad TC

While taking the Haad TC Course, I was tested on the following sections:

  • I built a penetration testing lab to practice real-world attack and defense scenarios
  • SYN-ACK Flood.
  • Practising DDOS.
Certificates

Contact

Lets drink some coffee and get to know each other better

LinkedIn
Mail
Miraziz Ochilov
© Copyright 2025 Miraziz Ochilov. All Rights Reserved