Aspiring Red‑Teamer

Linux, networking, and Python for offensive security. Hands‑on practice in a home lab with TryHackMe and Hack The Box. Building small automation tools and sharpening recon/exploitation workflows.

  Proof of Practice

  • TryHackMe: 9 rooms completed (Offensive/Junior/Defensive Intro, Neighbour, Cat Pictures 2)
  • Home Lab: Kali + Ubuntu on VirtualBox with snapshots and isolated networking
  • Python: CLI scripts + custom port scanner (in progress)

Featured Projects

Only work I can demo right now.

Python Port Scanner

Done

Python • sockets • TCP/UDP • concurrency

A command‑line port scanner with sane defaults. Scans common ports, supports timeouts, and lays groundwork for banner grabs.

  • Configurable target, ports, and scan speed via CLI flags
  • Timeout handling and basic concurrency
  • Next up: service banner grabs (where allowed)

Lab & Practice

Current environment and learning projects.

Home Lab VMs

VirtualBox • Kali Linux • Metasploitable • Mr. Robot

Practice environment for reconnaissance, exploitation, and post‑ex basics.

  • Kali Linux for daily tooling and workflows
  • Metasploitable VM: setup complete and used for exercises
  • Mr. Robot VM: walkthrough in progress

CLI Practice Scripts

WIP

Python • input handling • functions

Small scripts to build fundamentals and code clarity.

  • Automate Sending Emails
  • Create a Personal To-Do List App
  • Password Generation
  • Online Meeting Reminder

Write‑ups & Notes

Short summaries with commands, takeaways, and mitigations.

Done

TryHackMe: Neighbour

Recon • Enumeration • Web Exploitation

  • Nmap recon: top ports + service versions
  • Directory brute‑force and credential reuse insight
Done

TryHackMe: Cat Pictures 2

Auth bypass • Misconfig • Post‑ex basics

  • Identified misconfigured endpoint and weak session handling
  • Mitigations: least privilege and proper session invalidation

About

I’m Youssef Behlafi from Marrakech, Morocco. I’m building strong fundamentals in Linux, networking, and Python while practicing red‑team techniques in a safe home lab and on platforms like TryHackMe and Hack The Box.

Interests: red teaming, web application security, and automation for security tasks. Open to remote, paid internships. Bachelor’s in Computer Science (2024), FSSM Marrakech.

  • Linux (Ubuntu, Kali)
  • SSH, file permissions
  • IP, DNS, TCP/UDP
  • nmap, netcat
  • Metasploit (beginner)
  • Python scripting
  • VirtualBox