You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Aymeric M.AM

Aymeric M.

Pentest & Offensive | Attack Surface

€900/day
Nantes, FR
8-15 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Aymeric

Most organizations believe they are secure… until they are tested under real-world conditions.

Unintentional Exposureon the internet, undetectedvulnerabilities**, exploitable internal behaviors… **flawsoften already exist but remain invisible until actively sought.

My role is to reveal them before an attacker does.

As anoffensive cybersecurity**Pentester** and consultant, I simulate real attacks and identify what can be practically exploited in your environment.

I specialize in:

  • Internal and externalpenetration teststo identify real entry points
*Social engineering campaignsto test human behavior

*Forensic analysisafter incidents to understand and permanently correct

*Attack surface analysisand visible external exposures


Beyond detection, the goal is to provide you with aclear**, **prioritized**, and **directly actionablevision, enabling you to effectively remediate and reduce your actual exposure.

If you want to test your security level under real conditions, or better understand your current risks, I am available to discuss.
  • French

    Native or bilingual

  • English

    Native or bilingual

Can work on-site
Nantes (up to 50km), Paris (up to 30km), Lyon (up to 10km), Strasbourg (up to 10km), Lille (up to 10km)

Experience

  • Urssaf Caisse Nationale
    Penetration Test Auditor
    August 2021 - September 2025 (4 years and 1 month)
    Nantes, France
    Context:

    Intervention within a critical environment, with high stakes in cybersecurity, vulnerability management, and information system protection.

    Achievements:
    • Conducted internal and external penetration tests (pentest) on web, network, and infrastructure environments, including identification of exploitable vulnerabilities.
    • **Vulnerability Analysis**, risk assessment, and business impact evaluation, with prioritized remediation recommendations.
    • Contribution to thestructuring of a security departmentdedicated to vulnerability management and continuous improvement of the security posture.
    • Participation inforensic analysisfollowing security incidents, including investigation and understanding of attack vectors.
    • Use of offensive cybersecuritytools and methodologies(OSINT, reconnaissance, attack surface analysis, OWASP Top 10).
    *Collaboration with technical teams(systems, networks, security) for infrastructure strengthening and system hardening.

    *Active monitoringof threats, attack techniques, and detection tools to maintain a high level of expertise.
    Penetration Test Web Application Security Assessment Network Security Threat Analysis Offensive Security
  • Virtual and secure
    Director - Cybersecurity Auditor
    CONSULTING AND AUDITS
    June 2018 - August 2019 (1 year and 3 months)
    Nantes, France
    Context:

    Creation and development of a cybersecurity consulting business, with an approach focused on pentesting, security audits, and awareness.

    Achievements:

    • Conducted internal, external, and Wi-Fi security audits (pentest), identifying exploitable vulnerabilities and providing remediation recommendations.
    *Attack surface analysisand risk assessment across various environments (networks, systems, web).
    • Cybersecurityawarenessthrough conferences and educational sessions (simplifying threats, best practices).
    • Definition and implementation of commercial strategies and business development in the cybersecurity field.
    *Active monitoringof threats, attack techniques, and offensive cybersecurity tools.
    PenTest Training Technology Watch Cybersecurity Awareness Security Audit
  • SysDream
    Cybersecurity Consultant
    CONSULTING AND AUDITS
    January 2017 - May 2017 (5 months)
    Levallois-Perret, France
    Context:

    Engaged in security audit and penetration testing missions in various environments.

    Achievements:

    • Conducted security audits and penetration tests (pentest) on different systems and infrastructures.
    *Identificationof vulnerabilities, risk analysis, and remediation recommendations.

    *Writing clear and actionable audit reportsfor technical teams.
    • Participation in the setup of a virtualized challenge platform (CTF type), focused on training and skill development.
    *Technological watchin cybersecurity (threats, vulnerabilities, tools).
    PenTest Audit Security Audit Cybersecurity Awareness Offensive Security

Recommendations

Be the first to recommend Aymeric

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • CEHv9
    Sysdream
    2017
    Formation dispensée par SysDream, basée sur les cours de EC-Council, validée par l'obtention de la certification CEHv9.
  • PWK
    Offensive Security
    2020
    Formation pratique axée sur les méthodes de tests d'intrusion. Formation validée par l'obtention de la certification OSCP.

Certifications

  • CEHv9
    EC-Council
    2017
    Cybersecurity PenTest
  • OSCP
    Offensive Security
    2020
    PenTest Writing

Skill set

Categories