You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Sébastien T.ST

Sébastien T.

Network & Cybersecurity Engineer | IT Management

€380/day
Clermont-Ferrand, FR
8-15 years

Average response time: 2 hours

Freelancer profile translated to English.
Back to original language

About Sébastien

🔐 Cybersecurity & IT Management | Securing, Troubleshooting & Secure Development

Need to secure your infrastructure, fix a vulnerability, or stabilize your servers quickly?

I assist SMEs, startups, and technical organizations with concrete missions:

• IT security audit
• Infrastructure security (Linux / Windows Server)
• Partial or complete IT management
• Monitoring and preventive maintenance
• Backup and Disaster Recovery Plan implementation
• WordPress and web application security
• Compromise analysis / incident management
• Custom secure software development (Rust, Python, Go, C++)
• Network architecture and secure segmentation

My approach is pragmatic: understand your environment, identify real risks, and implement adapted, reliable, and documented solutions.

I can assist with:

✔ one-off missions (audit, migration, urgent security)
✔ monthly support (IT management, continuous monitoring)
✔ specific projects (internal tools, secure API, automation)

🔧 Quick intervention possible for:

• Linux / Windows server troubleshooting
• SSL / HTTPS configuration
• WordPress security after a hack
• Backup implementation or verification
• VPS / hosting migration
• Urgent incident resolution

Goal: secure and stabilize your system without overcomplicating your organization.
  • French

    Native or bilingual

  • English

    Fluent

  • Italian

    Basic

Can work on-site
Clermont-Ferrand (up to 50km), Saint-Étienne (up to 50km), Lyon (up to 50km), Grenoble (up to 50km)

Experience

  • SENTINELIS
    Security audit in a constrained environment - Cyber defense / Applied research
    CONSULTING AND AUDITS
    April 2026 - April 2026
    Clermont-Ferrand, France
    Formalization of a threat-oriented audit approach, adapted to sensitive or highly restricted environments. The objective is to assess how a malicious user with limited system access could subvert intended mechanisms: restricted client, virtual machine, network filtering, USB restrictions, controlled internet access, or application isolation.

    This approach goes beyond traditional vulnerability scanning. It integrates bypass scenarios, abuse of legitimate components, HID devices or microcontrollers, and discreet behaviors that may not generate obvious alerts in monitoring systems.

    It also relies on a reflection around persistent threats: long-term observation, attacker adaptation, exploitation of technical and organizational blind spots, and the ability to progressively bypass defenses without noisy actions.

    Skills applied: configuration audit, risk analysis, network security, virtualization, hardening, internal penetration scenarios, external exposure, recommendation writing, and prioritization of fixes.
    Security Audit risk-and-vulnerability-assessment Pentesting Virtualization Hardening
  • SENTINELIS
    Security audit and hardening of Linux & WordPress infrastructure
    CONSULTING AND AUDITS
    March 2026 - March 2026
    Lyon, France
    Comprehensive audit and progressive takeover of cybersecurity for a sensitive SME exposed to hybrid threats, operating several high-visibility WordPress sites.

    The mission began with an in-depth analysis of the infrastructure, including inspection of active processes, analysis of system and application logs, verification of persistence mechanisms, and search for indicators of compromise (webshells, malicious scripts, suspicious scheduled tasks).

    Particular attention was paid to analyzing SSH access and automated intrusion attempts to assess the server's actual exposure level.

    Following this investigation phase, several cleanup and attack surface reduction actions were implemented:

    • restricting the network exposure of MariaDB (local access only)
    • hardening the SSH service and protecting against brute force attacks
    • implementing automatic blocking mechanisms for malicious IP addresses
    • optimizing PHP-FPM and MariaDB configurations to improve server stability
    • correcting application configurations that generated recurring errors in logs.

    To observe the actual behavior of attacks before deploying a complete security architecture, a behavioral analysis system based on CrowdSec was deployed.

    This system allows detection of:

    • automated scans
    • administration interface probes
    • WordPress brute force attacks
    • malicious bots and aggressive crawlers.

    Hostile IP addresses are automatically blocked via a firewall bouncer mechanism.

    This phase is the first step before implementing a complete SOC/SIEM architecture for proactive detection and security event correlation.
    Security Audit Linux Server Intrusion Detection Wordpress Infrastructure
  • SENTINELIS
    Pentest & strategic risk assessment for an SME
    CONSULTING AND AUDITS
    February 2026 - February 2026
    Lyon, France
    Conducting a comprehensive penetration test as part of a global cybersecurity posture assessment for an SME. The engagement was conducted according to the APD (Advanced Persistent Defense) methodology, a structured approach aiming to analyze not only technical vulnerabilities but also organizational and human vectors that could constitute lasting entry points for an attacker.

    Technical Phase:

    • Mapping of exposed assets
    • Analysis of external and internal attack surfaces
    • Identification of network and application vulnerabilities
    • Controlled exploitation of identified flaws
    • Impact assessment (confidentiality, integrity, availability)

    Human Factor and Behavioral Exposure:

    In a realistic persistent attack scenario, a controlled social engineering test was performed to assess the organization's behavioral resilience.

    The simulated scenario demonstrated that the human attack surface represented a priority exposure vector, regardless of the perceived level of technical maturity.

    This phase helped reposition cybersecurity within its strategic dimension: an organization can be technically robust yet remain vulnerable due to its human factor.

    Deliverables:

    • Detailed technical report
    • Executive summary for management
    • Strategic risk analysis
    • Prioritized remediation plan
    • Organizational recommendations and awareness training

    Result:

    The mission led to a global awareness and the implementation of an improvement plan integrating architecture, governance, and the human factor.
    Security Audit PenTest Information Systems Security Risk Management Social Engineering

Recommendations

Be the first to recommend Sébastien

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • RNCP37987 – Specialist in Cybersecurity (Level 6)
    CSB Education Group (CSB.School)
    Parcours Bac+3 orienté pratique visant à rendre opérationnel sur les problématiques concrètes de cybersécurité en environnement PME/ETI : sécurisation d’infrastructures, durcissement systèmes, gouvernance des risques, détection et réponse aux incidents, ainsi que tests d’intrusion éthiques encadrés. La formation est structurée autour d’une montée en compétences progressive (réseaux, systèmes, développement, sécurité), avec une forte part de cas pratiques en conditions proches du réel : conception et sécurisation d’architectures réseau (zone entreprise/DMZ/zone industrielle), administration et sécurisation Linux/Windows, mise en place de mesures de protection de la donnée (chiffrement, contrôle d’accès), et rédaction de documentation/standards techniques. Un volet “SOC & détection” met l’accent sur l’analyse d’événements, la collecte et l’exploitation de journaux (logs), la construction de scénarios (playbooks) et l’amélioration continue des détections. Cette dimension se traduit directement en livrables utiles pour une organisation : cartographie des actifs, définition du comportement nominal, procédures de réponse et recommandations priorisées. Le parcours inclut également des mises en situation de tests d’intrusion éthiques (OSINT/discovery, reconnaissance active, exploitation encadrée, élévation de privilèges, AD, pivot), avec restitution structurée : synthèse, preuves, criticité, impacts (confidentialité/intégrité/disponibilité) et plan de remédiation. Enfin, l’intégration d’enseignements en développement et sécurité applicative (notamment Python/Rust/C, modèles web, API, cryptographie) renforce la capacité à auditer, automatiser et fiabiliser des outils internes, ainsi qu’à dialoguer efficacement avec des équipes techniques. En pratique, ce parcours soutient mes interventions chez les clients sur : audit d’exposition, durcissement, sauvegardes/PRA, segmentation réseau, sécurisation des postes/serveurs, et amélioration de la posture sécurité de manière pragmatique et documentée.

Certifications

  • Offensive Pentesting
    TryHackMe
    2015
    https://tryhackme.com/certificate/THM-MIAX8LOGZS
    Active Directory Audit Windows Pentest Buffer Overflow Exploits Cybersecurity Audit Web Pentest Offensive Security Pentesting Windows PowerShell Active Directory Security Windows Audit

Skill set

Categories