Projects

Selected projects focused on security analysis, tooling, and applied research. Each project documents the problem, approach, and lessons learned.

SOC Analyst Operations Portfolio

Continuous

A comprehensive archive of over 100 hands-on security alert investigations, demonstrating end-to-end incident response capabilities across malware, phishing, and network attacks.

LetsDefendSIEMEDRWiresharkCyberChef

Insider Threat Detection Dashboard

Completed

A statistical risk-scoring engine and interactive Power BI dashboard designed to detect anomalies in user behavior, specifically identifying insider threats within a 1,000-user dataset.

PythonPower BIPandasStatistical Analysis

CloudLog Sentinel: Cloud-Native SIEM

Completed

A full-stack Security Information and Event Management (SIEM) system that monitors AWS CloudTrail in real-time, detecting high-fidelity threats and dispatching instant alerts to Discord.

Java Spring BootAWS CloudTrailJavaScriptDiscord API

Enterprise Active Directory Hardening

Completed

Design and deployment of a secure, 1000-user enterprise environment featuring Tiered Administration, LAPS, and automated PowerShell security auditing.

Windows Server 2019PowerShellGroup PolicyLAPSVirtualBox

Wazuh SIEM/XDR Home Lab

Completed

End-to-end deployment of a SOC environment simulating real-world threats, focusing on automated incident response, custom detection engineering, and threat intelligence integration.

WazuhSysmonVirtualBoxLinuxWindows

SecureTraining Phishing Platform

Private / Showcase

A multi-tenant security awareness platform designed to simulate realistic phishing campaigns, track user behavior in real-time, and provide instant educational feedback.

PythonDjangoCeleryPostgreSQLChart.js