S. M. Zia Ur Rashid
Room No. 413, Abu Bakr Hall, IIUC, KumiraChittagong 4318 Bangladesh
smziaurrashid@gmail.com, ziaur@ieee.org
+8801852575265, +8801751583094
Education
International Islamic University ChittagongChattogram, Bangladesh
B.Sc., Electrical & Electronic Engineering2015 - Present
CGPA: 3.10/4.0 [Till 6th semester out of total 8th semester]
Patiya Government CollegeChattogram, Bangladesh
H.S.C., Science2012 - 2014
GPA: 4.40/5.0
Abdus Sobhan Rahat Ali High SchoolChattogram, Bangladesh
S.S.C., Science2007 - 2012
GPA: 5.0/5.0
Areas of Interest
Cyber Security | Information Security
Training And Courses
  • CYBER501x: Cybersecurity Fundamentals (Rochester Institute of Technology, edX)
  • CYBER502x: Computer Forensics (Rochester Institute of Technology, edX)
  • CYBER504x: Network Security (Rochester Institute of Technology, edX)
  • AWS Cloud Practitioner Essentials: Cloud Concepts
  • AWS Cloud Practitioner Essentials: Core Services
  • ESET Cybersecurity Awarness Training
  • 7-days Industrial Training on Estern Cables Limited
  • Microcontroller & Robotics Fundamental Course at Deshikarigor Research & Training Circle
  • Two-days Long Workshop on Industrial Automation Organized by IEEE IIUC SB
Publications
Conference Papers
[1] S. M. Zia Ur Rashid, MD. Imtiaz Kamrul and Asraful Islam. "Understanding the Security Threats of Esoteric Subdomain Takeover and Prevention Scheme." In Proceedings of the International Conference on Electrical, Computer and Communication Engineering (ECCE 2019), 07-09 February, 2019, Cox's Bazar, Bangladesh.
[2] Asraful Alam, Hobaibul Islam, Mohammad Tausiful Islam, S. M. Zia Ur Rashid, Md Jonayed Hossen and Md Sultan Mahmud. "CPG-Based Industrial Manipulators on AVR System for PTP Applications." In Proceedings of the International Conference on Electrical, Computer and Communication Engineering (ECCE 2019), 07-09 February, 2019, Cox's Bazar, Bangladesh.
[3] Asraful Islam, S. M. Zia Ur Rashid, Md. Abdus Salam and Ariful Islam. "Towards Blockchain-based E-voting System." In Proceedings of the 2018 2nd Int. Conf. on Innovations in Science, Engineering and Technology (ICISET), 27-28 October 2018, Chittagong, Bangladesh.
[4] Md Jamshed Alam, MD. Imtiaz Kamrul, S. M. Zia Ur Rashid and Syed Zahidur Rashid. "An Expert System Based on Belief Rule to Assess Bank Surveillance Security." In Proceedings of the 2018 2nd Int. Conf. on Innovations in Science, Engineering and Technology (ICISET), 27-28 October 2018, Chittagong, Bangladesh.
CVE Published
  • CVE-2018-16971, NIST National Vulnerability Database
  • CVE-2018-16970, NIST National Vulnerability Database
  • CVE-2018-16606, NIST National Vulnerability Database
Honors And Achievements
  • Champion, Software Development Competition, Tech Fest 2017, IIUC
December, 2017
Project Name: HackSlash : PHP-based Web Firewall
  • Microsoft
2017 - 2018
Received acknowledgement from Microsoft and listed on their Hall of Security Researcher for three times for finding and reporting security vulnerabilities on their online services. Also received white hat swag from Microsoft Security Response Center (MSRC) as a token of appreciation.
  • U.S. Department of Defense (DoD)
August, 2017
Listed on U.S. DoD Security Researcher Hall of Fame for reporting personal information disclosure vulnerability of their multiple website through their Hackerone program.
  • Uber
May, 2017
Listed on Uber Hall of Security Researcher for reporting two subdomain takeover vulnerability through their Hackerone bug bounty program.
  • Github
March, 2016
Received bounty and swag pack as reward from Github for reporting subdomain hijacking vulnerability through their bug bounty program and also listed on their hall of security reseacher.
  • Adobe
2016 - 2017
Listed on Adobe Hall of Security Researcher for reporting multiple security vulnerabilities including internal repositories and information disclosure through their Hackerone program.
  • Intel
March, 2017
Received letter of appreciation from Intel Corporation for reporting information disclosure vulnerability of their website.
  • Atlassian
May, 2017
Received swag pack as a token of appreciation from Atlassian for reporting a subdomain takeover vulnerability.
  • Khan Academy
June, 2017
Reported unrestricted file download vulnerability to and as a token of appreciation received Friendly Hacker Badge on my khanacademy profile.
  • University of Twente
October, 2017
Listed on University of Twente hall of fame for contributing to make their website more secure.
  • Auth0
February, 2018
Listed on Auth0 Researcher Hall of Fame for helping to secure their services by reporting security vulnerability.
  • CompTIA
March, 2018
Recieved CompTIA CySA+, Pentest+ & CASP exam voucher including Certmaster access and AITP IT Professional membership as a token of appreciation for reporting account takeover and cross-site scripting vulnerabilities.
Organizations And Affiliations
IEEE, Student Member (#93889420), 2016 - Present
IEEE Computer Society, Student Member (#93889420), 2016 - Present
IEEE Robotics & Automation Society, Student Member (#93889420), January, 2017 - January 2018
IEEE Power & Energy Society, Student Member (#93889420), January, 2017 - January 2018
CompTIA AITP, IT Professional Member (#887311), 2018 - Present
National Cybersecurity Student Association, Student Member (#111363026), 2018 - Present
SAARC Human Rights Foundation, Member (#16516), 2015 - 2016
Volunteer Activities
  • Webmaster, IEEE Bangladesh Section Student Activities Committee, 2018
  • Webmaster, IEEE IIUC Student Branch Executive Committee, 2017 & 2018
  • Ambassador, IEEEXtreme Programming Competition 12.0, 2018
  • Student Ambassador, IEEE madC (Mobile Applications Development Contest), 2018
  • Volunteer, International Conference on Innovations in Science, Engineering and Technology (ICISET 2018)
  • Student Member Secretary, ICISET Inter University Poster Presentation Competition 2018
  • Class Representative & Executive Member, IIUC EEE Club, October, 2015 - April, 2016
Technical Skills
  • Software & Tools - LaTeX, Endnote X9, Matlab, Proteus, Pentestbox
  • Functional Skills - Penetration Testing/Ethical Hacking, Web Design (Wordpress)
  • Programming Skills - Elementary Knowledge on C, C++, PHP, Python
  • Operating Systems - Windows 7, 8.1 & 10, Kali Linux, VPS (CentOS & Ubuntu)
References
Available upon request
.5"
.5"
.25"
.75"