$ cat /var/log/flags/captured

Capture The Flag.

Verified offensive security training on the platforms professionals use. Every technique learned here feeds back into the homelab's defenses.

Verified badges

Independent, dynamically generated badges — pulled directly from HTB and THM servers. These are not screenshots — they update in real time as Stéphane progresses.

CTF profiles

Active learning on three cybersecurity platforms — the global references for offensive security training. These are not games — they are realistic environments used by professionals, pentesters, and security teams worldwide to sharpen their skills against real-world attack scenarios.

The world's leading offensive security platform. Realistic vulnerable machines — from initial recon to full root. Windows Active Directory, Linux privilege escalation, web exploitation, CVE research. Used by professionals and red teams globally. Stéphane's primary training ground.

One of the most popular cybersecurity learning platforms. Guided paths and themed rooms — structured learning from pentesting to SOC operations. Beginner-friendly with progressive difficulty. Used by universities and certification prep worldwide.

Europe's leading CTF platform, born in France. Targeted technical challenges — web exploitation, cryptography, forensics, network analysis. Known for its depth and community-driven content. A reference in French-speaking cybersecurity.

View profile →

The feedback loop

Every offensive technique learned directly strengthens a defensive layer on the homelab. This is not a hobby — it is a feedback loop between offense and defense.

→

Password spraying on HTB → Strengthened complexity policies on Authentik

→

MSSQL impersonation → Audit of service permissions on the homelab

→

Kerberoasting / AD enum → SPN and Kerberos ticket monitoring in Wazuh

→

Hash cracking PBKDF2 → Hashing algorithm verification on every service

Practiced techniques

Skills acquired and validated on real environments — not theory, captured flags.

Active Directory

Kerberoasting AS-REP Roasting ACL abuse MSSQL impersonation Password spraying BloodHound enum WinRM lateral movement

Web exploitation

SQLi SSTI LFI / RFI Command injection OAuth redirect abuse Cookie manipulation

Cryptography & cracking

Hashcat (PBKDF2, bcrypt) John the Ripper Hash identification Salt extraction GPU cracking (RTX 3090)

Enumeration & reconnaissance

Nmap Gobuster / ffuf SMB enum SNMP walk DNS zone transfer Service fingerprinting

Privilege escalation

SUID / capabilities Sudo misconfiguration Cron abuse Kernel exploits Service permissions Token impersonation

Tools

Impacket Evil-WinRM Netexec Metasploit Burp Suite Chisel / ligolo LinPEAS / WinPEAS

The numbers

Offensive training is not a narrative — it is measurable progress.

24 HTB machines

#972 HTB global rank

63 Root-Me challenges

35 THM rooms

95 total flags

765 Root-Me points

◆ Security

See how offense strengthens defense — 7 layers of defense-in-depth deployed across the homelab. SSH hardening, PKI, CrowdSec, Wazuh, Authentik SSO.

→