Penetration testing on a simulated enterprise infrastructure. See PDF Report

Project Description

This project, conducted at Sorbonne University, consisted of a comprehensive penetration testing exercise on Windows and Linux environments, including web application audits. I applied a rigorous end-to-end methodology:

  • Reconnaissance & Scanning: Used Nmap for network mapping and service discovery.
  • Web Analysis: Performed fuzzing and application penetration testing using Burp Suite.
  • Exploitation: Executed brute-force attacks via Hydra, researched CVEs on ExploitDB, and performed exploitation with Metasploit.
  • Reporting: Authored a detailed audit report covering vulnerabilities, impact analysis, and remediation recommendations.

Added Value & Professional Objectives

This experience allowed me to consolidate a strong foundation for my cybersecurity career:

  • Methodological Reflexes: Developed a structured approach to exploitation and remediation.
  • Technical Proficiency: Gained mastery over hybrid environments (Systems & Web).
  • Audit Expertise: Developed the ability to transform technical analysis into professional reports directly transferable to corporate environments (security audits, advanced Pentesting).