Me
Select french languageSelect american language

My Skills

Core Skills

Through my professional experience, I've developed fairly broad IT skills, including system expertise, but also networking, development, and security.
This section highlights my proficiency with various technologies and concepts.

System Skills

Linux Systems

Highly proficient, with almost exclusive use for the past fifteen years, both personally and professionally (Debian / Ubuntu), mostly in web-oriented environments (though not exclusively).
In-depth understanding of system operations and interactions between system components.
Technologies and concepts mastered (non-exhaustive list, with varying levels of expertise): Apache, Nginx, HaProxy, MySQL / MariaDB, PostgreSQL, SQLite, Redis, MongoDB, Ansible, Nagios, Munin, NodeJS, Python, Proxmox, OpenLDAP, Keycloak, SAML, systemd, iptables / netfilter / nftables, strace, Proxmox, High Availability, AWS, Wireguard, VRRP, ... and many more.

Windows Systems

My experience with Windows systems is more limited, mostly involving basic enterprise network management: Active Directory, DNS server, Certification Authority, print server, etc.

Other Systems

FreeBSD

Limited experience with FreeBSD systems, primarily through Pfsense (a system dedicated to full router management: Routing, firewall, NAT, VPN, etc.)


Networking Skills

Solid understanding of the lower four layers of the OSI model (in a typical professional setting, outside of network specialization): local routing between internal networks, VLANs, firewalling, switching, VRRP, network security, etc.
Ability to implement these protocols and technologies on a Linux system. However, limited practical knowledge in inter-AS routing (OSPF, BGP, etc.)


Security Skills

System Security

Aware of system security issues: access, vulnerabilities allowing privilege escalation within a system.
Implementation of best practices for privilege separation (chroot, containerization, etc.).
Adherence to Unix principles of KISS (Keep It Simple and Stupid): dedicated "thing" for each task (virtual machine, container, etc.), while remaining flexible and adapting this model to practical needs.

Network Security

Implementation of best practices in managing enterprise networks: identifying needs, separating networks based on profiles (users, servers, etc.), VLAN, PVLAN, 802.1x, ...
Awareness of network attacks (e.g., ARP spoofing).

Application Security

Awareness of application attacks, mainly web-related: XSS, CSRF, SSRF, SQLi, NoSQLi, RCE, etc.
Basic knowledge of how memory exploits work (Buffer overflow).

Additional Skills

Development / Coding

I can read and understand many languages, such as: PHP, Python, JavaScript, and even C/C++ (I know how pointers work :-) ).
I’m comfortable with scripting, mainly in Bash and Python, with some experience in JavaScript (as well as HTML/CSS, of course).
I've even dabbled in Powershell! (Enough to not want to do more of it today).
However, development/scripting for me is mostly a way to simplify my work by automating repetitive, tedious, and/or complex tasks, rather than completing full software projects.
As you can see on this site, design is not my strong suit :-)