AirOverflow is looking for a passionate and hungry Security Engineer Intern to join our offensive security team. This is an opportunity built for individuals who are early in their cybersecurity journey but have already developed a genuine obsession with breaking things — ethically. As an intern on our red team, you will be immersed in real-world penetration testing workflows, working alongside experienced offensive security professionals who live and breathe adversarial thinking. You won't be making coffee or sitting on the sidelines — you will be actively involved in assessments, research, and hands-on technical work from day one. AirOverflow has always believed in bridging the gap between academic knowledge and industry practice, and this internship is a direct reflection of that commitment. Whether you've been sharpening your skills through CTF competitions, bug bounty hunting, home labs, or self-study, this is your chance to take everything you've learned and apply it in a structured, professional environment. If you're driven, curious, and ready to level up, AirOverflow is where your offensive security career begins.

A Note on Requirements: Our requirements for internship positions are not strict. The job description simply outlines what we would love for you to have — not a checklist you must fully satisfy. If you are curious, driven, and eager to learn, we want to hear from you.

What You'll Do

• Assist in conducting penetration tests on web applications, networks, and internal systems
• Participate in red team exercises and simulate real-world attack scenarios under senior guidance
• Research and document emerging vulnerabilities, exploits, and offensive techniques
• Write clear and structured reports detailing findings, impact, and remediation recommendations
• Contribute to the development of CTF challenges and internal security tooling
• Collaborate with the team on vulnerability assessments and security research projects
• Continuously learn and stay updated on the latest offensive security techniques and CVEs

What We're Looking For

• A solid foundational understanding of networking, operating systems, and web technologies
• Familiarity with common penetration testing tools such as Nmap, Burp Suite, Metasploit, or similar
• Basic knowledge of web application vulnerabilities (OWASP Top 10) and common attack vectors
• Active participation in CTFs, HackTheBox, TryHackMe, or similar platforms (share your profile!)
• Strong problem-solving mindset with a genuine passion for offensive security
• Ability to document findings clearly and communicate technical concepts effectively
• Self-motivated with eagerness to learn in a fast-paced environment

Nice to Have

• Any beginner-to-intermediate certifications such as eJPT, CompTIA Security+, or similar
• Experience writing basic scripts or tools in Python, Bash, or PowerShell
• Prior exposure to bug bounty programs with documented findings
• Understanding of Active Directory and common Windows/Linux attack paths
• Participation in or organization of cybersecurity events or communities

What We Provide

• Hands-on mentorship from experienced offensive security professionals
• Real-world exposure to penetration testing engagements and red team operations
• A structured learning path to accelerate your growth in offensive security
• Internship certificate and letter of recommendation upon successful completion
• Opportunity to convert to a full-time role based on performance
• Access to AirOverflow's internal resources, labs, and knowledge base
• A chance to be part of Pakistan's most exciting cybersecurity team