LOADING...
03 · WORK

Featured Projects

Real-world cybersecurity labs, automation tools, and threat analysis projects demonstrating hands-on expertise.

01
SOC Lab · Featured

Home SOC & SIEM Operations Lab

Built a fully functional Security Operations Center lab environment simulating real-world enterprise security monitoring. Ingested logs from Windows Server, Linux endpoints, and network devices into Splunk for centralized analysis, alert triage, and incident documentation workflows.

SplunkVirtualBox Kali LinuxWindows Server SysmonSigma Rules
// OUTCOME

Detected 12+ simulated attack patterns including lateral movement, privilege escalation, and data exfiltration. Achieved 95% alert fidelity with custom Sigma detection rules and documented full kill chains using MITRE ATT&CK framework.
12+
ATTACKS DETECTED
95%
ALERT FIDELITY
8
SIGMA RULES
02
Network Defense

Network Traffic Analysis & IDS

Deployed and configured Snort IDS on a simulated enterprise network. Analyzed malicious PCAP files to identify attack signatures, C2 communication, lateral movement patterns, and data exfiltration attempts.

WiresharkSnort ZeekPCAP Analysis
// OUTCOME Identified 3 CVE-related exploits and documented the full attack kill chain including initial access, execution, persistence, and exfiltration phases using MITRE ATT&CK.
3
CVEs FOUND
5
STAGES MAPPED
03
Threat Intel

Automated Threat Intelligence Platform

Developed a Python-based threat intelligence aggregator that automatically correlates IOCs from multiple open-source feeds, generates risk scores, and produces structured threat reports for SOC teams.

PythonOSINT APIs VirusTotalAbuseIPDBMISP
// OUTCOME Automated IOC enrichment reducing manual triage time by 70%. Processes 500+ indicators per run with automated severity scoring and report generation.
70%
TIME SAVED
500+
IOCs/RUN
04
IR Lab

Malware Analysis & Incident Response

Conducted static and dynamic malware analysis in isolated FlareVM sandbox environments. Performed reverse engineering with Ghidra to understand malware behavior, persistence mechanisms, and C2 communication patterns.

Any.runGhidra FlareVMMITRE ATT&CK
// OUTCOME Successfully analyzed 8 malware samples and developed 5 IR playbooks covering ransomware, RATs, info-stealers, and credential harvesting scenarios.
8
SAMPLES
5
PLAYBOOKS