Cloud System Information Event Management(SIEM)

Utilized custom PowerShell script to extract metadata from Windows Event Viewer, forwarding the data to a third-party API to derive geolocation data.

Configured Azure Log Analytics Workspace to ingest custom logs containing geographic information (latitude, longitude, state/province, and country) and limit data displayed with KQL (Kusto Query Language).

Created visual representations using pie charts, bar graphs, and world maps in Azure Sentinel (SIEM) Workbook to demonstrate the evolving global attack data for RDP Brute Force incidents targeting my Virtual Machine (Honeypot).

Intrustion Detection and Prevention(IDS/IPS)

Established a virtualized environment using VirtualBox (Oracle's Type-2 Hypervisor), configuring two Virtual Machines: one running Ubuntu as the target and the other running Kali Linux to generate network traffic.

Designed and implemented a customized Alert Rule for SNORT (IDS/IPS), specifically tailored to detect and analyze TCP/IP traffic within the environment.

Successfully executed an NMAP command aimed at the Honeypot, resulting in SNORT (IDS/IPS) promptly detecting and triggering the rule, accompanied by a relevant alert message.

Vulnerability Management

Installed and configured Nessus Essentials for credential vulnerability scans on Windows 10 hosts, optimizing security assessment and risk mitigation.

Implemented end-to-end vulnerability management on sandbox networks, encompassing Discovery, Prioritization, Assessment, Reporting, Remediation, and Verification.

Conducted vulnerability assessments with Nessus, efficiently identifying and remediating vulnerabilities while developing automated processes to proactively address risks associated with Windows updates and third-party software.

Malware Analysis using AnyRun and Sputnik

Proficiently utilized AnyRun (Malware Sandbox) to detonate deprecated Firefox, evaluating indicators of compromise, MITRE ATT&CK matrix, process graphs, and generating comprehensive text reports.

Conducted hash integrity analysis using Sputnik to examine the identified hash, ensuring accurate and thorough assessment of potential security threats.

Demonstrated expertise in cybersecurity tools and methodologies to analyze and mitigate potential malware risks, contributing to the enhancement of system security.

Network Map

Proficiently designed and simulated network environments using Packet Tracer, gaining valuable hands-on experience with various commands and networking concepts.

Strengthened wireless security by configuring router security mode to WPA2 Personal with AES encryption, ensuring data confidentiality and integrity in live environments.

Coding: HTML5, CSS, & Javascript

Developed the website's core structure using HTML and applied visually appealing styles using CSS, while ensuring seamless functionality with JavaScript.

Leveraged Visual Studio Code, along with live extensions, to test and fine-tune the website code effectively.

Successfully hosted the website on GitHub, demonstrating proficiency in version control and web deployment.

Adversarial Tactics, Techniques, and Common Knowledge

Gained hands-on experience with Mitre ATT&CK framework through practical application in Microsoft Sentinel and AnyRun environments.

Demonstrated expertise in identifying and remediating Indicators of Compromise (IOC) and vulnerabilities using industry best practices.