Dodji Dokoui, 22

Security Engineer · MSc Cybersecurity · Azure / M365 Apprenticeship

Currently pursuing a Master of Science in Cybersecurity, I am a Security Engineer in a Cloud Azure / Microsoft 365 environment. My work spans application security, cloud architecture, and SOC-like operations with hands-on experience deploying API gateways (APISIX), WAF solutions (Coraza, OpenAppSec, ModSecurity), and security monitoring stacks (Microsoft Sentinel, Defender for Cloud).

I actively develop skills in offensive security, OSINT, and network security. Alongside cybersecurity, I maintain a strong interest in web development, particularly with Next.js, which reinforces a secure-by-design approach across all my projects.

Get in touch

Technical stack

Azure

Microsoft 365

Wazuh

APISIX

Kali Linux

Proxmox

Burp Suite

BloodHound

Docker

Coraza WAF

Suricata

Entra ID

Azure

Microsoft 365

Wazuh

APISIX

Kali Linux

Proxmox

Burp Suite

BloodHound

Docker

Coraza WAF

Suricata

Entra ID

What I offer

Services

Engagements tailored for SMBs: controlled budget, concrete deliverables, and ongoing support if needed.

Pentest & External Audit

Real-world attack simulation from the Internet to map your exposure and identify critical vulnerabilities before an attacker does.

Estimated duration: 1 to 2 weeks

Active Directory Pentest

Full audit of your Active Directory, the most targeted component in SMB attacks. Kerberoasting, Pass-the-Hash, BloodHound, privilege escalation.

Estimated duration: 1 to 3 weeks

Azure / M365 Audit

Review of your Microsoft cloud security posture. Misconfigurations, over-privileged identities, exposed data, compliance, based on CIS and MSRC benchmarks.

Estimated duration: 1 to 2 weeks

View all services

Resume

Curriculum Vitae

A quick overview. Download the full version below.

Download CV

Open source

Projects

Tools built to solve real security infrastructure problems, each with a full write-up on the approach and lessons learned.

PRJ-001Active

APISIX Forge

Production-ready API gateway stack: from 3 days of manual config to under 5 minutes.

Deploying a robust API Gateway architecture (gateway + WAF + observability) typically requires 3+ days of manual configuration for an experienced engineer. There is no open-source, self-hosted solution that ships everything pre-wired.

3 days → 5 minDeployment time

10+Services orchestrated

Apache APISIXCoraza WAF (WASM)Docker ComposeNext.jsPrometheus+5

Open sourceRead article

Documented practice

Recent labs

Test environments built and documented: attack, detection, remediation. Each lab follows a realistic scenario.

LAB-001Web & API

API Gateway Security Lab

Multi-layered API security architecture on a self-hosted Proxmox hypervisor: API gateway, WAF, identity provider, and observability stack covering the full chain from request ingestion to threat detection.

Attacks covered

SQLi & XSS blocking (Coraza WAF)
JWT validation with JWKS endpoint
Rate limiting: HTTP 429 on breach

APISIXCoraza WAFKeycloakOAuth2/OIDCPrometheusGrafanaDockerProxmox

Detection: Coraza WAF + Grafana

LAB-002Network

Telegram-based Command & Control

Functional C2 implant using Telegram's Bot API as a covert channel. Outbound traffic blends in with legitimate HTTPS to api.telegram.org. Covers the full offensive implementation and network-level Suricata detection.

Attacks covered

Covert C2 over legitimate HTTPS
Remote command execution via Telegram bot
Pull-based C2 (no inbound firewall rules needed)

PythonTelegram Bot APISuricatapfSenseWindows 10Proxmox

Detection: Suricata on pfSense

LAB-003Active Directory

Active Directory Attack & Defense

Intentionally vulnerable AD environment on Proxmox: full attack chain from recon to Domain Admin compromise, then detection implementation. Covers AS-REP Roasting, Kerberoasting, Pass-the-Hash, DCSync, and Golden Ticket.

Attacks covered

AS-REP Roasting + Kerberoasting
Pass-the-Hash + DCSync
Golden Ticket (persistence)

Windows Server 2022Active DirectorypfSenseSuricataBloodHoundImpacketParrot OSProxmox

Detection: Suricata + Windows Event Logs + Sysmon

View all labs

Free offer: External exposure audit

Your attack surface, seen from the outside

Passive reconnaissance, exposed services, subdomains, data leaks. No access to your infrastructure needed. Delivered within 48h.

No-cost commitment · Actionable result

Request the free audit View all services