01 / About
I approach digital security with the same precision, discretion, and technical rigor required in mission-critical environments. Currently a first-year DUT Cybersecurity student at EST Tétouan, I specialize in designing secure network perimeters and threat defense workflows.
My hands-on experience includes laboratory deployment of SIEM and NIDS/IPS solutions (Wazuh, Suricata, Snort) coupled with active Red Team simulations. This double-sided exposure allows me to construct effective correlation rules and validate threat coverage using tools like Nmap, Hydra, SQLMap, and hping3.
I am an active CTF player (solving challenges in ENSI CTF and NorthSec), focusing on digital forensics, web exploitation, and reverse engineering. I am seeking a practical initiation internship for late 2026 to apply my technical curiosity and problem-solving skills to real-world corporate infrastructures.
02 / Skills
A structured index of technical competencies cultivated through university projects, home labs, and CTF challenge environments.
Security Operations & SIEM
- • Wazuh SIEM, Suricata NIDS, Snort IDS/IPS
- • Event Correlation & Audit Log Analysis
- • Threat Hunting & Incident Monitoring
- • Active System Supervision with Zabbix
Network & Defense Infrastructure
- • Secure Perimeter Engineering & VPN Setup
- • Windows Server Admin (Active Directory, GPO)
- • OSI/TCP-IP Stack Auditing & Packet Capture
- • Firewalls, Routing Protocols & IDS/IPS Modes
Offensive & Vulnerability Auditing
- • Vulnerability Scans (Nmap, Nikto, SQLMap)
- • Simulated Brute-Force Testing (Hydra, hping3)
- • Digital Forensics & Reverse Engineering
- • Lab-Environment Malware Isolation
Automation & Virtualization
- • Python Scripting (OOP & Socket Automation)
- • Unix Bash Shell Scripting & C Programming
- • Virtualization (VMware, VirtualBox)
- • Cisco Packet Tracer Lab Mockups
03 / Projects
Wazuh SIEM & Suricata NIDS Integration
Deployed a full Wazuh SIEM architecture (Manager + Agents) integrated with Suricata NIDS for EVE JSON event analysis. Conducted simulated Red Team campaigns (Nmap scans, SSH/FTP/RDP brute force with Hydra, SQLMap injections, and hping3 SYN flood DoS) from Kali Linux, correlating and auditing events to validate rule coverage.
Snort IDS/IPS Inline Deployment
Installed and configured Snort 3 in inline IPS mode (NFQ) for active threat blocking. Developed custom detection rules targeting ICMP traffic anomalies, SSH brute-forcing, and Nmap SYN scans. Validated defensive actions against web vectors like SQL injections.
Capture The Flag Web Platform
Engineered and launched a functional, multiplayer web CTF platform built on object-oriented programming in Python. Implemented user-isolated challenge execution, automated scoring trackers, and clean administration panels. Hosted in production on Railway.
04 / Education & Certs
DUT in Cybersecurity
EST Tétouan, Morocco — 2025 - Present
Key Courses: Networks & Security (OSI/TCP-IP, Firewalls, VPN, IDS/IPS), Windows Server (AD, GPO), Python, C, SQL.
Baccalauréat in Physical Sciences
Lycée Abdelkhalek Torres, Tétouan — Mention Bien (French/Bilingual option)
Industry Certifications
Getting Started with Cisco Packet Tracer
Cisco Networking Academy — May 2026
Introduction to Cybersecurity
Cisco Networking Academy — Apr 2026
Foundations of Cybersecurity
Google / Coursera — Apr 2026
CTF Competitions
ENSI 2K26 CTF (Cyberspace x ENSI) — 11 Flags solved (May 2026)
NorthSec 2026 — 6 Flags solved (April 2026)
Acquired Competencies: Digital Forensics, Web Exploitation, Reverse Engineering.