Skip to content
View BenTamam's full-sized avatar

Block or report BenTamam

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
BenTamam/README.md

Ben Tamam

Offensive Security Technical Lead @ Check Point Software Technologies

LinkedIn Blog

About Me

Offensive Security Technical Lead at Check Point Software Technologies, leading adversary simulation operations across Windows, Active Directory, and Azure environments. I design and refine attack paths that replicate threat-actor TTPs aligned with the MITRE ATT&CK framework.

Specialize in red team adversary simulations, vulnerability research, and Windows exploit development. My work spans client-facing penetration testing across web, infrastructure, cloud, and thick-client domains, as well as independent security research and CVE discovery.

Published Research & Vulnerabilities

Advisory Product Description Further Reading Year
PAN-SA-2022-0005 Palo Alto Cortex XDR Tamper Protection Bypass - discovered a method to bypass the tamper protection mechanism in the Cortex XDR agent Blog Post 2022

Publications

Article Description Date
Using MSSQL CLR Assembly for Code Execution Shellcode execution from inside SQL Server via unsafe CLR assemblies Jan 2025

Certifications

Offensive Security & Red Team

Certification Issuer Credential
OSWE - OffSec Web Expert (WEB-300) OffSec View
OSEP - Offensive Security Experienced Penetration Tester (PEN-300) OffSec View
OSCP - Offensive Security Certified Professional (PEN-200) OffSec View
OSWP - Offensive Security Wireless Professional (PEN-210) OffSec View
eWPTXv2 - Web Application Penetration Testing Extreme INE Security View
eWPT - Web Application Penetration Tester INE Security View
MCRTP - Microsoft Cloud Red Team Professional Pwned Labs View
CRTE - Certified Red Team Expert Altered Security View
CRTP - Certified Red Team Professional Pentester Academy View

Infrastructure & Systems

Certification Issuer Credential
CCNA - Cisco Certified Network Associate Cisco View
Understanding of Cisco Network Devices Cisco View
LPIC-1 - Linux Professional Institute Certification LPI View
MCSA: Windows Server 2012 Microsoft View
MCSA: SQL Server 2012/2014 Microsoft View
Exam 410: Installing and Configuring Windows Server 2012 Microsoft View
Exam 411: Administering Windows Server 2012 Microsoft View
Exam 412: Configuring Advanced Windows Server 2012 Services Microsoft View
Exam 461: Querying Microsoft SQL Server 2012/2014 Microsoft View
Exam 462: Administering Microsoft SQL Server 2012/2014 Databases Microsoft View
Exam 463: Implementing a Data Warehouse with Microsoft SQL Server 2012/2014 Microsoft View

Current Stack

Python PowerShell C# C x86 Assembly Bash Burp Suite Professional WinDbg IDA Pro BloodHound AWS Azure Docker Terraform Proxmox

@BenTamam's activity is private