About Me

Hey there!

I’m a recently graduated cybersecurity engineer from Tunisia, currently working as a Microsoft Security Consultant Associate. I’m still early in the journey, but I’m very serious about one thing: understanding how systems actually work — then learning how they break, how they get abused, and how to defend them properly.

Most of my focus right now is around Microsoft security: Defender XDR, Microsoft Entra ID, hybrid identity, Intune, Defender for Endpoint, identity threat detection, and Zero Trust concepts. I spend a lot of time building labs, testing detections, validating configurations, and trying to connect the dots between theory, real-world attacks, and what security tools actually show in the portal.

I’m the kind of person who learns by doing. That usually means spinning up VMs, building Active Directory labs, playing with Hyper-V, writing PowerShell scripts, automating Microsoft Graph tasks, testing security baselines, or trying to survive the latest Hack The Box machine. Sometimes it works. Sometimes I break everything and spend three hours fixing a DNS issue that was my fault from the beginning. Both are part of the process.

I also like building things, not just consuming content. Internal labs, proof-of-concepts, assessment frameworks, small automation scripts, detection demos — anything that helps turn abstract security ideas into something visible, testable, and repeatable. I’m especially interested in identity security because it sits at the center of so many real attacks: credentials, privileges, Kerberos, Active Directory, Entra ID, synchronization, lateral movement, and all the messy hybrid stuff in between.

This blog is where I document that journey.

Some posts will be polished technical deep dives. Others will be raw notes from labs, mistakes, CTFs, tools, workshops, Microsoft security experiments, or random rabbit holes I fell into while trying to understand something properly. My goal is not to pretend I know everything. It is to write things down clearly enough that future me — and hopefully someone else — can learn from them.

Whenever I get the chance, I enjoy sharing knowledge: helping students, mentoring beginners, preparing workshops, or explaining a concept until that “ohhh, now I get it” moment happens. I know how confusing this field can feel at the beginning, so I try to keep things practical, honest, and beginner-friendly without removing the technical depth.

I’m still learning, still building, and still far from where I want to be. But Inshallah, step by step, I want to become the kind of security engineer people trust when things are complex, unclear, or high-pressure.

Until then, I’ll keep breaking, fixing, documenting, and sharing what I learn.

If you’re into Microsoft security, identity, CTFs, labs, automation, or just want to geek out about cybersecurity, feel free to reach out. Always happy to connect, exchange ideas, or contribute to anything that helps the community grow — in Tunisia, Africa, or anywhere else.

Let’s learn something new today.

~ Darknight