Projects
Below are selected cybersecurity projects and investigations I’ve worked on.
Full technical writeups are published on Medium and linked directly.
SOC Automation Project 2.0: End-to-End Detection & Response with AI
A hands-on SOC automation project demonstrating a complete end-to-end detection and response workflow using SIEM, SOAR, and AI-assisted analysis. This project highlights how automation and AI can support alert triage, enrichment, and response actions to reduce manual analyst workload and improve incident handling efficiency in a simulated SOC environment.
🔗 Read the full article in Medium
Boss of the SOC V1 (2015) – Website Defacement Investigation
A SIEM-based investigation of a simulated real-world website defacement incident. This project focuses on log analysis, attack timeline reconstruction, and identifying unauthorized access activity, demonstrating practical incident investigation and attacker behavior analysis from a SOC analyst’s perspective.
🔗 Read the full article in Medium
SOC Automation Project
A home lab project focused on building detection and response capabilities using endpoint telemetry, SIEM monitoring, and basic orchestration. This project demonstrates how alerts progress through detection, investigation, and response stages, reinforcing core SOC workflows and alert lifecycle management fundamentals.