OUR GRADUATES

Why our Graduates are Exceptional

Real-World
Testing Scenarios

In order for us to determine our students' ability to apply the skills they've learned, we have to make sure both the educational content and the testing environments replicate real world scenarios.

The ASCP requires you to both analyze  how an application is meant to be used, as well as infer how to exploit it.

Certification
Validated by Industry Professionals

The ASCP Exam test was created by Corey J Ball. Corey is a renowned expert in the API security space, as both author of the seminal book on hacking APIs and as a Senior Penetration tester for  environments.  

Vendor-Neutral
Education

At APIsec University, we pride ourselves on providing vendor-neutral certification. Our instructors focus on teaching principles, techniques, and best practices that are applicable across various tools and platforms.

Our certification process adheres to these same principles and tests skills that would be required in not just any but all professional environments.

Passing the ASCP is a difficult task for even experienced Pen-Testers. If you'd like to pit your team against our test, please reach out to Dan Barahona via our Contact Us form.

ASCP Graduate Directory

Meet the wide variety of industry professionals who proved they have the skills necessary to effectively test API's.  If you arrived here hoping to find qualified Pen-Testers to work with that might have other skills you need, you're in the right place.

Our Graduates

Mohammed Aashique

LinkedIn
Security Engineer | Bug bounty Hunter | Content Editor | CVE-2024-0773 | CVE-2024-0782 | CVE-2024-0958 | Google Hall of Fame

Application Security Engineer with a passion for offensive security, bug bounties, and securing APIs. Always learning, always hacking.

Mohammed Kamel Abuthawabeh

LinkedIn
Acting Manager of Cybersecurity Testing Division / VAPT Team Lead, MSc, ASCP, CAPen, CAP, CNSP, (ISC)² - CC, CASA, ISTQB-CT-SEC, ISTQB-CT-MAT, ISTQB-CTFL, MCP

Cybersecurity Engineer specializing in application and API security, with expertise in DevSecOps, red teaming, and vulnerability research.

Sheikh Ali Akbar

LinkedIn
Bug Hunter | Penetration Tester | CTF Player | Licensed Penetration Tester (LPT) MASTER | Certified Penetration Tester Professional (C|Pent) | API Security Certified Professional (ASCP) | Certified Ethical Hacker (CEH)

Security Engineer focused on application security, DevSecOps, and threat modeling. Passionate about building secure software and breaking insecure ones.

Al-amir Badmus

LinkedIn
Sr. Application Security Engineer | SecDevOps | Web, Mobile, API, Container, Cloud & AI/ML Penetration Testing | ASCP | CASA | CASP | CDP | CCSE | CSSE | CTMP | CMPen-Android | MCRTA | QCS | CNSP | SDET | CSM

Application Security Engineer with expertise in secure code reviews, DevSecOps, and cloud security. Passionate about defending apps from code to cloud.

Shatha Barqawi

LinkedIn
Pentester | OSCP | CRTP | ASCP | eWPTX

Security Engineer specializing in application & cloud security, with hands-on experience in DevSecOps, threat modeling, and secure architecture.

Sérgio Charruadas

LinkedIn
Training Developer @ Hack The Box | CBBH | BSCP | CAPenX | ASCP | GIAC - GSEC & GFACT

Application Security Engineer with a knack for CI/CD security, threat detection, bug bounty hunting, and building resilient, secure software.

Ads Dawson

LinkedIn
Staff AI Security Researcher | Full Stack Red Teaming | Appsec | Hacker Advisory Board Member | Ethical Hacker | MLSecOps | Hacking APIs | OWASP LLM Apps Tech Lead, Toronto Lead and ASVS Contributor

Application Security Engineer passionate about DevSecOps, secure code practices, and open-source tools. Defender of APIs & CI/CD pipelines through smart automation.

Ahmed Husseini

LinkedIn
Security Researcher | eJPTv2 | ISC2 | Cloud Security | ASCP | CASA |  HackersDaddy CTF Excellence

Security Architect focused on AppSec and DevSecOps, skilled in secure code reviews, API defenses, and automation to safeguard modern software environments.

Kayode Oladeinde

LinkedIn
Application Security Engineer | Cybersecurity Preacher | Toastmaster | Web Application Security Trainer

API & AppSec specialist from Nigeria, passionate about DevSecOps, API security, and finding vulnerabilities to build resilient, secure software.

Maria Teresa Pereira

LinkedIn
Cyber Threat Hunter @ Siemens Energy | Speaker | THM Top 4% | OWASP Leiria Chapter Founder & Co-Leader | APISec University Ambassador | WISP Volunteer

Application & Cloud Security Engineer passionate about DevSecOps, secure coding, and threat modeling. Committed to protecting systems and data integrity.

Joas Antonio dos Santos

LinkedIn
Cyber Security Leader | Red Team Lead | Offensive Security Advisor | Author of Books | Speaker | University Instructor | Offensive AI Research | Yen Language Creator | Red Team Leaders Founder | Chief Research Officer

Application Security Engineer focused on API security, DevSecOps, and vulnerability research. Dedicated to building resilient and secure software environments.

Ken Schulz

LinkedIn
Cybersecurity | Ethical Hacker | Patent Holder

Security Engineer with expertise in application & cloud security, DevSecOps, vulnerability research, and secure infrastructure design.