whoami

OffSec - OffSec Experienced Penetration Tester (OSEP) OSEP
in progress
Zero-Point Security - Certified Red Team Lead (CRTL) CRTL
2026
Hack The Box - RastaLabs Pro Lab RastaLabs
2025
Zero-Point Security - Certified Red Team Operator (CRTO) CRTO
2025
Hack The Box - Dante Pro Lab Dante
2024
CompTIA - PenTest+ PenTest+
2024
CREST - CREST Practitioner Threat Intelligence Analyst (CPTIA) CPTIA
2024
arcX - Practitioner Threat Intelligence Analyst (PTIA) PTIA
2024
GIAC - Global Industrial Cyber Security Professional (GICSP) GICSP
2023

Offensive Security Specialist focused on Red Teaming across Active Directory, Entra ID, and hybrid environments, covering the full attack lifecycle from reconnaissance to post-exploitation and defense evasion in critical infrastructure scenarios.

Experienced in planning and executing engagements aligned with the TIBER-EU framework for the European financial sector, as well as TIBER-Like adaptations for other industries, managing complex C2 infrastructure with a strong emphasis on Operations Security.

Skilled in Adversary Emulation in collaboration with Blue Teams through Purple Teaming exercises, aimed at evaluating the effectiveness of security controls, detection capabilities, and incident response procedures.

Responsible for engagement reporting, including the identification, prioritization, and evaluation of remediation actions.

Strong background in:

  • Malware Development - design and implementation of custom tooling and payloads for initial access, persistence, and lateral movement, with a focus on bypassing modern endpoint defenses (EDR/AV) through evasion techniques
  • Penetration Testing - targeting web applications, web services, and IT infrastructures for major clients in the public, banking, and financial sectors
  • Threat Intelligence, Threat Modeling, and attack surface analysis - leveraging open sources and proprietary platforms to contextualize targets, map the attack perimeter, and define realistic threat scenarios to emulate