$ WHOAMI

I am a Cybersecurity Engineer with a deep passion for offensive security. Currently, as an Offensive Security Consultant, I focus on Web Application Penetration Testing, API Penetration Testing, Mobile Application Penetration Testing, Internal Penetration Testing and Thick Client Penetration Testing.

"Embrace the nerves while enjoying the process."

Projects

#### 1. AuditHound - Developing a security tool based on BloodHound's results during AD security audits. - This tool automates the security audit task for Active Directory environments by leveraging the results of BloodHound. - It generates detailed reports, typically in Excel format, that summarize identified security misconfigurations. These reports also include actionable recommendations for resolving the identified AD security issues. #### 2. Android Static and Dynamic Analysis of password managers - The idea of this project is to decompile and analyze a set of eight popular password managers on Android to check if they correctly handle the master password. - Software analyzed: 1Password, LastPass, Keeper, Sticky Password, Password Depot, NordPass, Bitwarden, mSecure.

Notible CTF Accomplishments

• 2023 - 2nd Team in National CTF ENSIAS MCSC V10.0.
• 2022 - 1st Place in Local CTF ENSAO.
• 2022 - Among Top 10 students in CyberTalents's Bootcamp.
• 2022 - 2nd Team in Morocco CTFtime.

Socials

• Linkedin
• Github
• TryHackMe Profile
• HackTheBox Profile