I share with you my discoveries around pentesting and security research.

About me

I have always been interested by computers. Both as a builder (programming) and as a breaker (hacking).
I begun my professional career in the cyber-security field (used to be called "information security"), as a pentester. Following my keen interest for software development, and wanting to help improve security in a different way, I am now more of a security researcher and developer.
I learn a lot everyday in order to stay up to date with all the progress in the digital field. On this blog, I will share my:

I am also a CTF player with my Tipi'Hack friends. We like to gather and spend time cracking security challenges.
And by the way, I am French 🇫🇷


Coding is always a pleasure for me. Therefore I like to contribute back to many opensource security tools I use whenever I find bugs or enhancements. For example:

  • BloodHound and SharpHound
  • Nmap
  • Metasploit
  • Atomic Red Team
  • Impacket
  • Ghostpack
  • PowerSploit
  • HostAPd-WPE
  • Responder
  • sqlmap
  • ...
Find all these on my developer profile on GitHub: @cnotin.
My main languages are Python and C#, but I can contribute on existing codebases in most major languages.


  • OSCP (Offensive Security Certified Professional)
    • Advanced-level penetration testing certification
    • November 2016
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
    • Honors status (score: 93%)
    • May 2015 (#605)

LinkedIn & resume

Find more details on my professional profile on LinkedIn: Clément Notin.


Disclaimer: all views expressed on this blog are my own and do not represent the opinions of any of my employers.

April 2021 - for Tenable
Staff Research Engineer
December 2020 - April 2021 for Alsid (acquired by Tenable)
Senior Active Directory Security Researcher
October 2018 - November 2020 for Saint-Gobain
Pentester / Offensive Security expert
April 2013 - September 2018 for Intrinsec
Pentester / Auditor

I also have side-activities:
  • Secure development teacher for Epita engineering school
  • Occasional bug bounty hunter, mainly via HackerOne


2008 - 2013 Institut national des Sciences appliquées de Lyon (Grande École)
Engineer's degree (Master level), in Computer Science, software engineering and general IT, with honours