Welcome to my cybersecurity portfolio. This GitHub page highlights projects that demonstrate my knowledge in threat detection, network security, malware analysis, red/blue teaming, and security automation.
| Project | Description | Tools |
|---|---|---|
| SIEM-Lab | Simulated SOC environment with log ingestion and detection | Splunk, Sysmon, Windows, ElasticStack |
| Nmap-NSE-Automator | Automated vulnerability scanning with Nmap scripting | Nmap, Bash, Python |
| Wireshark-Capture-Analysis | Analyzing PCAP files to detect cyber threats | Wireshark, Suricata |
| Active-Directory-AttackLab | Local AD lab for privilege escalation & attack simulations | Windows Server, PowerShell, BloodHound |
| Python-Malware-Analysis | Static and dynamic analysis of malware | Python, VirusTotal API, YARA |
| SOC-Playbooks | Incident response playbooks and detection guides | Markdown, MITRE ATT&CK |
Simulates log collection and correlation in Splunk or Elastic SIEM. Detect brute force, lateral movement, etc.
Automated malware analysis with Python. Integrates VirusTotal API and signature detection.
Command-line tool to run common vulnerability scans using Nmap and NSE scripts.
Uses VMs to demonstrate AD attacks and defense with Mimikatz, SharpHound.
Markdown documents with structured response plans for phishing, ransomware, and insider threats.