projects

ALL PROJECTS

Every hands-on lab, tool, and investigation — real infrastructure, real telemetry, real defense.

[ all_work ]
Brute Force Attacks

Monitoring Brute Force Attacks

Project

Built an Azure honeypot to capture brute-force login attempts. Investigated attacker activity with KQL and visualized source geolocations on a custom map.

Azure MDE KQL
DEC 14, 2025 View Report →
CTF Threat Hunt

CTF — Threat Hunt

CTF

Capture-the-flag threat hunt simulating a corporate compromise. Traced adversary activity via MDE telemetry and KQL to build a timeline across the attack lifecycle.

Azure EDR KQL
NOV 29, 2025 View Report →
Threat Hunting Investigation

Threat Hunting Investigation

Incident

Investigated suspected TOR browser use to bypass company controls. Traced file activity, process execution, and network connections to known relay nodes.

Azure EDR KQL
NOV 1, 2025 View Report →
Phishing Analyzer

Phishing Analyzer

Tool

A Python tool that scans .eml files for phishing indicators. Checks sender, body, links, and attachments — assigns a score, verdict, and optional VirusTotal checks.

Python VirusTotal
SEP 21, 2025 View Report →
Vulnerability Management

Vulnerability Management

Project

Scanned an Azure environment with Nessus to uncover vulnerabilities across VMs and services. Prioritized high-severity risks and validated fixes through follow-up scans.

Azure Nessus
AUG 20, 2025 View Report →
AI SOC Analyst

AI SOC Analyst

Tool

Python workflow connecting the OpenAI API to an Azure environment for log aggregation. AI-driven triage accelerates detection and reduces manual SOC workload.

Python OpenAI Azure
COMING SOON In Progress