Penetration Tester • Web & Crypto Analyst • Blockchain Enthusiast

Hi, I’m Ilyas Lamkacher — I build secure, automated, Web3‑ready systems.

Security-focused full‑stack & infrastructure engineer with a passion for offensive testing, deliverability engineering, and blockchain analysis. Based in Morocco. Open to remote collaboration.

View Projects Contact Me Download CV

About

I blend cybersecurity, web analysis, and crypto research to design systems that are both resilient and fast. I work across PHP/Python, Nginx/Apache, Cloudflare, GeoIP/ASN filtering, and modern observability to ship reliable experiences.

Security

Pen‑testing, anti‑bot networks, rate‑limiters, honeypots, CSP, secure headers, and HTML transformation/obfuscation with accessibility in mind.

Automation

Async pipelines, API orchestration, large‑scale validation/enrichment, CI/CD hygiene, and performance‑aware instrumentation.

Web3 / Crypto

On‑chain data reading, smart‑contract surface analysis (read‑only), wallet & network tooling, and market telemetry dashboards.

Skills

Core stack & competencies.

Security & Infra

Web Security · Pentesting · CSP · SSL/TLS · Cloudflare · Nginx · Apache · Linux · GeoIP/ASN · Threat Modeling

Deliverability & Messaging

Email Deliverability · SMTP Architecture · MIME Design · SPF/DKIM/DMARC · Header Optimization · Diagnostics

Automation & Dev

Python · PHP · REST APIs · Async I/O · Data Processing · Git · Observability · Performance Tuning

Projects

Selected work (high‑level & safe to share).

Anti‑Bot Gateway

Multi‑layer gateway combining ASN/Geo allowlists, behavioral rate‑limits, honeypots, and content protection. Reduced automated abuse while preserving UX.

Security Cloudflare Nginx

Deliverability Pipeline

Inbox‑first MIME layouts, compliant headers, feedback loops, and seed diagnostics across Gmail/Outlook/Yahoo. Lifted inbox placement and reputation.

SMTP DMARC MIME

Automation Toolkit

Python‑based async orchestration for validation/enrichment at scale with resilient retries, structured logs, and cost‑aware concurrency.

Python APIs Async

Education

2020 – 2021
OpenClassrooms
Core foundation
2022 – 2023
IBM Skills Network
Cloud & security specialization
2024 – Present
Stanford University (Online)
Advanced professional level
2020 – 2024
LinkedIn Learning
Continuous short courses

Stanford University (Online) — Advanced Computer Security (2024 – Present)

Graduate‑level coursework in network defense, cryptography, secure coding, and incident response.

IBM Skills Network (Coursera) — Full‑Stack Cloud Dev & Cybersecurity (2022 – 2023)

Cloud deployment, containerization, CI/CD, and secure app design with hands‑on labs.

OpenClassrooms — Full‑Stack Web Development (2020 – 2021)

Mentored program covering front‑end/back‑end, databases, DevOps, and application security.

LinkedIn Learning — Ongoing Certificates (2020 – 2024)

Web security, email deliverability, automation scripting, and cloud infrastructure.

Contact

Let’s build secure, scalable systems together.

Prefer email? ilyas@lamkacher.com

```html