Loubna GOUCHAG
Cybersecurity student, blue team oriented trainee and aspiring SOC Analyst.
Contact Information:
Marrakech, Morocco
Email1 : loubnagouchag@gmail.com
Email2 : gouchagloubna@gmail.com
+212 652 78 15 06
Summary
I am a Final year Cybersecurity Engineering Student and Blue Team Enthusiast, always seeking for new opportunities that
align my passion with my professional goals.
The school subjects I studied throughout the Cybersecurity specialization along with my self-study program motivated me significantly to dig deeper into the field of cybersecurity and strengthen my knowledge and technical skills as well as my soft skills in terms of being an effective team member in the work environment.
As a final year Cybersecurity Student, I fancy myself walking in the shoes of a cyber security professional in the next few years, working in the SOC (Security Operations Center) team and evolving into Incident Response field.
The school subjects I studied throughout the Cybersecurity specialization along with my self-study program motivated me significantly to dig deeper into the field of cybersecurity and strengthen my knowledge and technical skills as well as my soft skills in terms of being an effective team member in the work environment.
As a final year Cybersecurity Student, I fancy myself walking in the shoes of a cyber security professional in the next few years, working in the SOC (Security Operations Center) team and evolving into Incident Response field.
Education
2021 - Present
Master engineering degree in cybersecurity and embedded systems :
- National School of Applied Sciences (ENSA Marrakesh) - Cadi Ayyad University
2019 - 2021
Preparatory classes :
- National School of Applied Sciences (ENSA Marrakesh) - Cadi Ayyad University
2018 - 2019
International Baccalaureate in Mathematics French option :
- Youssef Ben Tachfine High School
Bootcamps
July 2023 - September 2023
- Blue Team Bootcamp By Trend Micro and CyberTalent :
- SOC Analyst training : Introduction to SOC, Network security, Email analysis, web security analysis, Splunk architecture and usage, introduction to logs and events, SIEM components and tools, Digital Forensics.
- Threat hunting training :MISP, IOCs and Yara, Zeek, Hunting with wireshark, Hunting with powershell, Hunting Windows events and logs, the HIVE information management system.
Internships
05 July 2023 - 18 August 2023
- Network Security internship at El Wilaya of Marrakesh :
- Implementation of a secure LAN-WAN-DMZ architecture.
- Technical skills: PfSense, Snort, OpenVPN, pfBlockerBG.
Skills
- Linux hardening
- Cryptography and public key infrastructure (PKI)
- Threat intelligence frameworks : OpenCTI, MISP.
- Yara Basics
- Windows Active Directory hardening
- Traffic analysis with Wireshark, Zeek and Brim.
- PfSense Firewall
- Burp Suite
- Nmap
- Splunk Basics
- ELK Kibana
- Snort
- OpenVPN
Certificates and Courses
- (ISC)² Systems Security Certified Practitioner (SSCP)
- IBM Cybersecurity Analyst professional certificate - Couresera
- Blue Team Junior Analyst Pathway on Security Blue Team.
- TryHackMe Junior Pentester learning path.
- Cyber Security Management Virtual Experience Program with ANZ Bank on the Forage - April 2023
- Social Engineering Investigation & Digital Investigation.
- Tesltra Virtual Experience Program :
- Responding to a malware attack.
- Analysing the attack.
- Mitigate the malware attack (Technical).
- Incident Postmortem.
Projects
- Web vulnerability scanner :
- Implementation with : NodeJS, MYSQL, HTML and CSS.
We built a Web vulnerability scanner that identify security weaknesses in websites and web applications. The scanner we built is based on a database that contains payloads to be sent to the website we're scanning and based on the server response, the vulnerability scanner decide whether the website is vulnerable or not.
These payloads are corresponding to SQL Injection, Local File Inclusion (LFI), LDAP Injection and Directory Indexing.
- Implementation with : NodeJS, MYSQL, HTML and CSS.
-
VoIP Project :
In this project, We studied the security weaknesses of VoIP (Voice Over IP) technology. We simulated various attacks including MITM (Man In The Middle), Eavesdropping, DOS (Denial Of Service) and attacks on users passwords. - Face recognition system and emotions detection :
- Implementation with : Python, Viola Jones algorithm, CNN (convolutional neural network).
Our application has many features starting with user authentication to use our face recognition system and emotions detection tool. Once the user is authenticated successfully, they can upload a video of their choice to detect people's face along with their names or use their webcame for live face detection.
The emotions detection is another feature on our application that once detect the user's emotion it gives them a list of proposed activities depending on the detected emotion. For example, if the user is detected as bored, the application provide them cinema or restaurant websites to go out and enjoy.
- Implementation with : Python, Viola Jones algorithm, CNN (convolutional neural network).
Awards and Achievements
- Top 1% on TryHackMe Platform for Learning Cyber Security.
- The face recognition and emotions detection system project was nominated to the most innovative digital solution by WSA 2022 (World Summit Awards).
Languages
- Arabic
- French
- English
Volunteering
May 2023 - Present
- Member of Women For Cyber Africa association.