You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Clément B.CB

Clément B.

Pentester Red Team, Internal, Web, Active Directory

€650/day
3 projects
Paris, FR
3-7 years
Active Directory
Web Pentest
Internal Pentest
Red Team
OSCP

Average response time: 4 hours

Freelancer profile translated to English.
Back to original language

About Clément

Offensive cybersecurity expert (OSCP and OSEP certified✅), I offer penetration testing and security audit services to identify and fix vulnerabilities in your IT systems. My goal is to improve your security posture against modern threats.
As a Red Team specialist, I also carry out the following types of missions:
  • Black/Gray/White Box Pentest / API
  • Configuration Audit
  • Android Mobile Application Audit
  • Phishing Exercise / Physical Security Tests / Wi-Fi Tests
I am certified ✅:

*OSCP

*OSEP

I have completed the following personal projects:

**CVE Discovery**: CVE-2021-XXXXX published in June 2021 on SolarWinds Orion software.

**HidenXploit C++ packer**: Development of my own packer (C++) to inject compiled code directly into memory to bypass static/dynamic antivirus analysis.

**HTTP Reverse Shell**: Development of an HTTP protocol-based reverse shell to retrieve commands from the C&C.

**Personal Blog**: Creation of my personal blog to write security posts.

**Spear Phishing Campaign**: Email containing a fake survey in Word format that executes a macro downloading a C++ Reverse Shell.

**BugBounty**: Discovery of a CVSS 5.4 vulnerability on the website of a French public railway company.
Consulting and Audits
Defense and Military
Digital and IT Services

  • French

    Native or bilingual

  • English

    Fluent

  • Italian

    Basic

Can work on-site
Paris (up to 50km)

Experience

  • Freelance
    Pentester - Red Teamer - Web - Active Directory
    CONSULTING AND AUDITS
    September 2021 - Today (4 years and 9 months)
    Paris, France
    I founded my company specializing in penetration testing and security audits to identify and fix IT system vulnerabilities. Our goal is to strengthen their resilience against modern threats. We distinguish ourselves through our expertise in Red Team and OSINT audits, and have developed our own platform for analyzing data leaks and security breaches.

    1. Red Team Pentest 🔴👾🕵️‍♂️
    • Simulation of advanced attacks (phishing, exploitation, post-exploitation)
    • Testing the resilience of detection and response systems
    • Privilege escalation and lateral movement
    • Detailed report with recommendations

    2. OSINT (Open Source Intelligence) 🌍🔍📡
    • Creation of a data ingestion platform for information retrieval
    • Research and analysis of sensitive public information
    • Threat mapping associated with your organization
    • Identification of information leaks (credentials, documents)
    • Protection against doxxing and OSINT-based cyberattacks

    3. Web Pentest 🌐🔓💻
    • Analysis of OWASP Top 10 vulnerabilities (XSS, SQLi, CSRF...)
    • Audit of APIs and web applications
    • Exploitation of vulnerabilities and security recommendations

    4. Active Directory (AD) Pentest 🏢🔑🔄
    • AD environment mapping and audit
    • Exploitation of weaknesses (Kerberoasting, Pass-the-Hash...)
    • Testing of detection and response mechanisms
    • Report and AD security hardening
  • Ministère des Armées
    Pentester
    DEFENSE AND MILITARY
    September 2021 - December 2025 (4 years and 3 months)
    Paris, France
    Performed Active Directory and web audits on various system types. Internal black box pentesting only. Contact me for more details.
    PenTest Ethical Hacking Active Directory
  • WAVESTONE
    Auditor Pentester
    November 2019 - August 2021 (1 year and 9 months)
    Paris, France
    Performed penetration testson various system types across all industries (infrastructure, applications, IoT, cloud, web).

    🔍Mastery of offensive security methodologies(OWASP, OSCP, MITRE ATT&CK, TIBER-EU, etc.) as well as associated tools and frameworks (Cobalt Strike, Metasploit, Empire, BloodHound, etc.).

    🚀 **Carried out Red Team missions**: Network mapping, SIEM, EDR, NDR evasion, and real attack simulations (phishing, pivoting, and Active Directory exploitation).
    OWASP Top 10 Nmap Active Directory Security Audit Report Writing
Check out Clément's experience

Reviews

5.0

Out of 2 ratings

ChristopheC

Christophe

LeGoff Transports

Reviewed on 9/10/2025

We hired Clément for a web pentest mission, and everything went very well. A freelance professional who is very attentive to needs. His skills are remarkable: the tests performed were exhaustive, precise, and relevant. The final deliverable was clear and well-structured. In addition to his expertise, Clément demonstrated great responsiveness and flawless professionalism throughout the mission.
AbdelA

Abdel

idelyo

Reviewed on 9/8/2025

We engaged Clément to perform a comprehensive Red Team pentest of our infrastructure and an analysis of our external footprint (OSINT). The engagement was conducted with great rigor, responsiveness, and professionalism. Each step was documented and explained with excellent pedagogical clarity, allowing us to effectively strengthen our security. A competent professional, a true ethical hacker, he identified critical points while offering concrete and tailored recommendations. A high-quality collaboration, which we recommend to any company wishing to assess and improve its cybersecurity level.

Recommendations

Be the first to recommend Clément

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Bachelor's & Master's Degree in IT Methods Applied to Business Management (MIAGE)
    Aix-Marseille University
    2019
  • University Diploma in Technology in Computer Science
    University of Aix-en-Provence
    2016
    Diplôme Universitaire de Technologie Informatique

Certifications

  • OffSec Certified Professional (OSCP)
    Offensive Security
    2023
    Enumeration Post-Exploitation Metasploit Web Exploitation Reverse Shell Tunneling Web Pentest PenTest Privilege Escalation Active Directory
  • OffSec Experienced Penetration Tester (OSEP)
    OffensiveSecurity
    2025
    Process Injection Obfuscation Phishing VBA Macro Shellcode C2 Framework AV/EDR Evasion Bypassing AMSI Active Directory Offensive Development

Skill set

Penetration Testing
Threat Intelligence
Phishing
OSEP
OSINT
PenTest
Ethical Hacking
Bug Bounty
OWASP Top 10
Nmap
Security Audit
Report Writing

Categories