Youssef Behlafi
Available for remote paid internship • UTC+0/+1 • Replies within 24h

Aspiring Red‑Teamer

Linux, networking, and Python for offensive security. Hands‑on practice in a home lab with TryHackMe and Hack The Box. Building small automation tools and sharpening recon/exploitation workflows.

Download Resume Contact Email

  Proof of Practice

  • TryHackMe: 9 rooms completed (Offensive/Junior/Defensive Intro, Neighbour, Cat Pictures 2)
  • Home Lab: Kali + Ubuntu on VirtualBox with snapshots and isolated networking
  • Python: CLI scripts + custom port scanner (in progress)

Featured Projects

Only work I can demo right now.

Python Port Scanner

Done

Python • sockets • TCP/UDP • concurrency

A command‑line port scanner with sane defaults. Scans common ports, supports timeouts, and lays groundwork for banner grabs.

  • Configurable target, ports, and scan speed via CLI flags
  • Timeout handling and basic concurrency
Source

Automate Sending Emails

Done

Python • Schedule • Gmail SMTP

Simple Python script that automates sending an email on a repeating schedule using SMTP and the schedule library.

  • Configurable sending time
  • Timeout handling and basic concurrency
  • Simple interactive prompts(no config file required).
Source

TaskMate

Done

Python • Terminal • Task Management

Simple Python script that allows you to manage tasks in the terminal.

  • Add tasks with a name.
  • Remove tasks by index.
  • View tasks with automatic numbering.
  • Clears the terminal for a clean display.
Source

Lab & Practice

Current environment and learning projects.

Home Lab VMs

Done

VirtualBox • Kali Linux • Metasploitable • Mr. Robot

Practice environment for reconnaissance, exploitation, and post‑ex basics.

  • Kali Linux for daily tooling and workflows
  • Metasploitable VM: setup complete and used for exercises
  • Mr. Robot VM: walkthrough in progress

CLI Practice Scripts

WIP

Python • input handling • functions

Small scripts to build fundamentals and code clarity.

  • Password Generation
  • Online Meeting Reminder
  • Passwords Manager

Write‑ups & Notes

Short summaries with commands, takeaways, and mitigations.

Done

TryHackMe: Neighbour

Recon • Enumeration • Web Exploitation

  • Nmap recon: top ports + service versions
  • Directory brute‑force and credential reuse insight
Done

TryHackMe: Cat Pictures 2

Auth bypass • Misconfig • Post‑ex basics

  • Identified misconfigured endpoint and weak session handling
  • Mitigations: least privilege and proper session invalidation

About

I’m Youssef Behlafi from Marrakech, Morocco. I’m building strong fundamentals in Linux, networking, and Python while practicing red‑team techniques in a safe home lab and on platforms like TryHackMe and Hack The Box.

Interests: red teaming, web application security, and automation for security tasks. Open to remote, paid internships. Computer Science Student, FSSM Marrakech.

  • Linux (Ubuntu, Kali)
  • SSH, file permissions
  • IP, DNS, TCP/UDP
  • nmap, netcat
  • Metasploit (beginner)
  • Python scripting
  • VirtualBox

Direct