Guerric Hervé

Pentester by training, pivoting toward GRC and complex systems.

I completed a Master 2 SeCReTS at Paris-Saclay in cryptography and network security, then worked as a pentester at I-Tracing with a research focus on GCP security, and later at Cyberwatch.

I’m currently a candidate for the M2 MIKS Complex Systems and Strategy at Sorbonne Paris 1. From September, working on system dynamics at Paris and then Bergen, with a longer-term focus on bringing that approach to security posture assessment and GRC methodology.

In the meantime : CISSP, EBIOS RM, cloud write-ups mainly.

What this site is

Working notes made public. Write-ups from PortSwigger and HTB are the most prevalent content available from the personal notes I published.

You will also find conceptual notes on Cloud, the occasional deep-dive into something specific like Intel hybrid architecture or full disk encryption on Linux.

The audience is whoever finds it useful. Practitioners who want the thought process behind a solution, or business-adjacent people who want technical depth without condescending tone. The technical content doesn’t get watered down for the second group. The context just needs to be there.

Contact

Reach out on LinkedIn or check the Root Me profile if you want to discuss a challenge.

Explorer

Haft

Guerric Hervé

What this site is

Contact

Table of Contents

Recent Notes

Compute Engine

GCP Firewall and Network Topology

GCP IAM