Kilian

01

About

$ ~/whoami

I'm Kilian.
Security Researcher
& Penetration Tester.

I find the gaps that others miss — in networks, in applications, in assumptions. Three years of offensive security work across enterprise networks, Active Directory environments, and web applications.

Based in Germany. Working globally. Currently open to new engagements and full-time roles.

Get in touch View Projects & Writeups

SUBJECT_FILE

LocationGermany

FocusOffensive Security

HTB RankPro Hacker

LanguagesDE, EN

StatusOpen to work

3+Years experience

847+Vulns found

15+HTB machines

OSCPCertified

02

Work experience

2024 — Present Active

Penetration Tester

NOW

Company Name · Berlin, DE

Internal and external penetration tests for enterprise clients across finance and healthcare.
Active Directory assessments — privilege escalation, lateral movement, domain compromise chains.
Technical and executive-level reports with prioritised remediation guidance.

Active DirectoryWeb App Testing Burp SuiteReport Writing

2022 — 2024

IT Security Analyst

Company Name · Remote

SIEM monitoring and incident triage — MTTR reduced 35% via Python automation.
Managed vulnerability program across 200+ assets from scan to remediation closure.
Developed internal tooling in Python to automate repetitive log analysis tasks.

SIEMIncident Response PythonVuln Management

2021 — 2022

IT Support / Junior Sysadmin

Company Name · Germany

Managed on-premise Windows Server infrastructure — AD, Group Policy, DNS.
L2 hardware and software support for 100+ users.

Windows ServerActive Directory Networking

03

Education

2018 — 2022

B.Sc. — Computer Science

University Name · City, Country

04

Skills

// Offensive

Penetration Testing
Web Application Testing
Active Directory Attacks
Privilege Escalation
Exploit Development
Reverse Engineering

// Tools

Burp Suite
Metasploit
BloodHound · Impacket
Nmap · Gobuster
Ghidra · Wireshark
Kali Linux · Docker

// Languages

Python
Bash / PowerShell
C
JavaScript
SQL

// Platforms

Kali Linux
Windows Server
Docker
AWS (fundamentals)

05

Certifications

OSCP

Offensive Security Certified Professional Offensive Security 2024

eJPT

eLearnSecurity Junior Penetration Tester INE Security 2023

CPTS

Certified Penetration Testing Specialist HackTheBox 2023

Sec+

CompTIA Security+ CompTIA 2022

06

Projects & Writeups

// Projects

No.TitleSummaryTags

01 Example Tool A short description of the project Python · CLI

02 Another Project Something interesting built here Security · Tools

See all projects →

// Writeups

No.TypeTitleSummaryTags

01 HackTheBox OpenAdmin Apache OpenNetAdmin RCE to root via cron Web · RCE · Linux Read → 02 HackTheBox Resolute LDAP enumeration and DNS admin group abuse Active Directory · LDAP · Windows Read → 03 HackTheBox Offshore Multi-domain lab with pivoting and AD CS Active Directory · Pivoting · AD CS Read → 04 HackTheBox Forest AS-REP roasting and DCSync in an AD environment Active Directory · Kerberos · DCSync Read → 05 HackTheBox Lame Classic Samba exploit via Metasploit Metasploit · Samba · CVE Read →

See all writeups →