Skip to content
MA

Hi, I'mMohammed AlYahya

Cybersecurity Leadership

Security Lab

Tools that came out of jobs I was doing, not a tutorial outline. You’ll see crosswalks I needed for an ECC review, a header checker I built for a hardening pass, a JWT inspector I keep around for vendor calls. Everything runs locally.

2 Offensive 3 Defensive 4 Tools 5 Frameworks 4 Crypto

Designed & built by Mohammed AlYahya

Network Reconnaissance

Network Reconnaissance Simulator

root@kali:~#
Click a preset or type a command to start scanning...
Rendering XSS safely — the defender view

XSS: safe vs unsafe rendering

A side-by-side of how the same input renders through innerHTML versus textContent. I use this to explain to engineers why sanitization is a rendering-layer decision, not a validation decision.

VULNERABLE (innerHTML)
SANITIZED (textContent)
Email Threat Analysis

Email Phishing Analyzer

Paste email headers below to analyze for phishing indicators.

Log Threat Detection

Log Analyzer — Threat Detection

Security Headers Audit

Security Headers Scanner

Subnet Calculator

Subnet Calculator

CVE Lookup

CVE Vulnerability Lookup

> Enter a CVE ID or click a famous vulnerability above

JWT Token Inspector

JWT Token Decoder

Password Strength Analyzer

Password Strength Analyzer

> Waiting for input...

NCA ECC ↔ ISO 27001 Crosswalk

NCA ECC-1:2018 mapped to ISO/IEC 27001:2022SAMA CSF v1.0 (May 2017). Coverage is one-directional (ECC → mapped framework). Mapped at control / control-consideration level.

Currency: NCA issued ECC-2:2024 (4 domains, 108 controls; ICS moved to the separate OT controls, data-localization to SDAIA/NDMO), superseding ECC-1:2018. This crosswalk reflects the expert-audited ECC-1:2018 mapping; an ECC-2:2024 refresh is in progress.

37 / 37 ECC controls map to ISO 27001 (33 direct, 4 partial).32 / 37 ECC controls map to SAMA CSF v1.0 (20 direct, 12 partial); 5 have no CSF equivalent.

  • Direct same control
  • Partial related; bundled or split
  • No equivalent outside framework scope
NCA ECC Control Domain ISO/IEC 27001SAMA CSF Mapping
Cybersecurity strategy Governance 5.1 Policies for information security 3.1.2 Cyber Security Strategy Direct Direct
Cybersecurity steering committee Governance 5.2 Information security roles and responsibilities 3.1.1 Cyber Security Governance Direct Direct
Cybersecurity function Governance 5.4 Management responsibilities 3.1.4 Cyber Security Roles and Responsibilities Direct Direct
Cybersecurity in HR Governance 6.1 Screening 3.3.1 Human Resources Direct Direct
Cybersecurity in HR (T&Cs) Governance 6.2 Terms and conditions of employment 3.3.1 Human Resources Direct Direct
Cybersecurity awareness and training Governance 6.3 Information security awareness, education and training 3.1.6 Cyber Security Awareness Direct Partial
Cybersecurity risk management Governance Clause 6.1.2 Information security risk assessment (ISMS clause) 3.2.1 Cyber Security Risk Management Direct Direct
Compliance with regulations Governance 5.31 Legal, statutory, regulatory and contractual requirements 3.2.2 Regulatory Compliance Direct Direct
Cybersecurity review and audit Governance Clause 9.2 Internal audit (ISMS clause) 3.2.5 Cyber Security Audits Direct Partial
Asset management Defence 5.9 Inventory of information and other associated assets 3.3.3 Asset Management Direct Direct
Identity and access management Defence 5.15 Access control 3.3.5 Identity and Access Management Direct Direct
Secure authentication Defence 8.5 Secure authentication 3.3.5 Identity and Access Management Direct Direct
Information system protection Defence 8.7 Protection against malware 3.3.8 Infrastructure Security Partial Partial
System configuration / hardening Defence 8.9 Configuration management 3.3.8 Infrastructure Security Direct Partial
Email protection Defence 8.23 Web filtering 3.3.8 Infrastructure Security Partial Partial
Networks security Defence 8.20 Networks security 3.3.8 Infrastructure Security Direct Partial
Network services security Defence 8.21 Security of network services 3.3.8 Infrastructure Security Direct Partial
Mobile devices security Defence 8.1 User endpoint devices 3.3.10 Bring Your Own Device (BYOD) Direct Partial
Data and information protection Defence 8.12 Data leakage prevention 3.3.9 Cryptography Direct Partial
Data masking / minimisation Defence 8.11 Data masking No SAMA CSF equivalent Direct No equivalent
Cryptography Defence 8.24 Use of cryptography 3.3.9 Cryptography Direct Direct
Backup and recovery Defence 8.13 Information backup 3.3.8 Infrastructure Security Direct Partial
Vulnerabilities management Defence 8.8 Management of technical vulnerabilities 3.3.17 Vulnerability Management Direct Direct
Penetration testing Defence 8.8 Management of technical vulnerabilities 3.3.17 Vulnerability Management Partial Partial
Cybersecurity event logs and monitoring Defence 8.15 Logging 3.3.14 Cyber Security Event Management Direct Direct
Monitoring activities Defence 8.16 Monitoring activities 3.3.14 Cyber Security Event Management Direct Direct
Incident management Defence 5.24 Information security incident management planning and preparation 3.3.15 Cyber Security Incident Management Direct Direct
Physical security Defence 7.1 Physical security perimeters 3.3.2 Physical Security Direct Direct
Web application security Defence 8.26 Application security requirements 3.3.6 Application Security Direct Direct
Cybersecurity resilience in BCM Resilience 5.30 ICT readiness for business continuity No SAMA CSF equivalent Direct No equivalent
BCP / DRP tests Resilience 5.29 Information security during disruption No SAMA CSF equivalent Direct No equivalent
Third-party cybersecurity Third-Party 5.19 Information security in supplier relationships 3.4.1 Contract and Vendor Management Direct Direct
Third-party agreements Third-Party 5.20 Addressing information security within supplier agreements 3.4.1 Contract and Vendor Management Direct Direct
ICT supply-chain risk Third-Party 5.21 Managing information security in the ICT supply chain 3.4.1 Contract and Vendor Management Direct Partial
Cloud computing and hosting cybersecurity Third-Party 5.23 Information security for use of cloud services 3.4.3 Cloud Computing Direct Direct
ICS asset management ICS 5.9 Inventory of information and other associated assets No SAMA CSF equivalent Partial No equivalent
ICS network segregation ICS 8.22 Segregation of networks No SAMA CSF equivalent Direct No equivalent

Showing 37 ECC↔ISO 27001 mappings. Conservative pass — only confident Direct and Partial mappings included.

SAMA CSF mappings are expert-audited and verified against the SAMA Rulebook at control-consideration level. Five ECC controls (info-system, email, networks, network-services, backup) fan into SAMA 3.3.8 Infrastructure Security, which bundles these into control considerations rather than dedicated subdomains.

STRIDE Threat Modeling

STRIDE Threat Modeler

Select an asset type to generate a STRIDE threat model with recommended mitigations.

> Select an asset type above to begin threat modeling.

Incident Response (NIST 800-61)

Incident Response Framework (NIST SP 800-61)

MITRE ATT&CK Skill Matrix

MITRE ATT&CK Skill Matrix

Reconnaissance 90%
Initial Access 85%
Execution 80%
Persistence 75%
Privilege Escalation 88%
Defense Evasion 70%
Credential Access 82%
Discovery 90%
Lateral Movement 78%
Collection 72%
Exfiltration 65%
Impact 60%
Security Milestones

Security Milestones

2023-01
ECC/TCC National Audits
Executed ECC/TCC audits across regulated national entities; closed all P1 findings before the regulator’s next visit window.
2023-06
NCA/CST/CMMC Compliance
Led the compliance programme to full NCA + CST + CMMC alignment in under 6 months — ahead of the assessment date.
2024-01
Enterprise Risk Framework
Stood up enterprise-wide IT and cybersecurity risk assessments mapped to SAMA ITGF; risk-register coverage moved from partial to all regulated business lines.
2024-06
DLP & FIM Deployment
Deployed DLP and File Integrity Monitoring across the highest-value data flows; insider-threat detection-to-investigation time dropped from days to hours.
2025-01
Risk Reporting Transformation
Embedded KRIs and residual-risk scoring into Jira; executive risk reviews moved from quarterly slide decks to a live dashboard with auditable history.
Encryption & Hashing

Encryption & Hashing Playground

> Enter text above to see hashes and encodings

Caesar Cipher

Caesar Cipher Encoder/Decoder

13
DNS Resolution

DNS Resolution Visualizer

💻
Browser
🔍
Recursive
Resolver
🌐
Root
Server
🏢
TLD
Server
📋
Authoritative
Server
TCP/TLS Handshake

TCP/TLS Handshake Visualizer

CLIENT
SERVER