Mostly virtualization / Software Defined Network related topics:- VMware ESXi / vCenter / vCloud DIrector / NSX- Openstack- Docker- Juniper contrail- Juniper MX / QFX / SRX- MPLS VPNs- MP-BGPAWS:- Design, PoC and automation of infrastructures based on EC2, S3, VPC, Direct Connect, ELB, cloudwatch, cloudtrail, Kinesis (dataStream and firehose), lambda, cloudformation, IAM (duh...) and probably other stuff I forgot.Automation:- Automation of workflow creation on Beeware/DenyAll, F5 LTM/GTM and efficientIP using python and API (REST and SOAP)Some more common topics:- F5 Big IP reverse proxying with SSL offloading- Radware Alteon load balancing- Load balancing using Haproxy / keepalived / pacemaker- HP / Dell blades and ESM (embedded switches) administrationAnd some misc. fun stuffs:- Development of a VRRP VIP thief in python. Become VRRP master and catch traffic destined to those virtual IPs- Development of a multipurpose script leveraging L2 protocols (DTP, CDP, LLDP, VTP, STP) and simple L2 attacks like VLAN hopping (using double tagging) to assess L2 security (Python)- Development of a simple RTLS server (based on scapy with custom protocol definition)- Development of a DNS poisonning server with SSLstrip+ HSTS support (Python, again)- BGP hijack demonstration with monero miner injection in cleartext HTTP traffic using 6 routers running quagga, bettercap-ng and coinhive- Creation of an IOT CTF for NDH 2K18 using orange Pi, nano Pi, vulnerable deserialization, misconfigured LD_PRELOAD, mariaDB running as root (yup, I do like raptor UDF) and a predictable WPA2 key

- Cisco network administration (routers, switches, L3 switches)- network monitoring configuration and update (iMC, cacti, MRTG)- network equipement configuration backup (iMC)- Cisco IronPort debug and setup (with WCCP)- Aruba controller / access point setup- Aruba Clearpass (802.1x) setup with EAP-TLS authentication

- Cisco network administration (routers, switches, L3 switches and wifi controler)- alcatel network configuration (switches and L3 switches)- network monitoring setup with icinga, cacti (snmp) and nfsen (netflow)- network security management (access rules, vulnerability assessment, suspect activity monitoring)- network devices setup and configuration (Cisco ASA, Fortigate, Qualys vulnerability scanner)- Wifi architecture setup and configuration with Cisco wifi controller and APs- Microsoft ISA migration to Fortigate integrated solution- web proxies configuration and administration (barracuda and websense)- SMTP proxy administration (barracuda)- HTTP reverse-proxy setup and configuration with Nginx- HTTP server configuration and administration (apache2) - linux system engineering (Debian, CentOS and Ubuntu)

- Conception, implementation and debuging of network infrastructures.- AD based infrastructure migrations to free softwares (mostly samba and openLDAP). - Development on FusionDirectory project (PHP and Perl).- Implementation of LDAP based infrastructures (with datas/schemas replication over TLS and ACL management).- Identity management (openLDAP, pam-ldap, samba-ldap and FusionDirectory).- Complete mail infrastructure setup (Cyrus and postfix over TLS, with greylisting, advanced spams filtering, and antivirus scans).- Study and implementation of a complete backup solution (backuppc, and bacula).