#1 New Release Author - Digital Transformation

Projects

Cybersecurity solutions and AI-driven innovations transforming digital security landscapes.

Security Operations Center (SOC) Lab

Jun 2025
Splunk Suricata pfSense VirtualBox AWS
  • Built enterprise-grade Security Operations Center (SOC) simulation with AWS-hosted Splunk SIEM, Suricata IDS, and pfSense firewall across Kali Linux, Ubuntu, and Windows environments
  • Executed adversary emulations aligned with MITRE ATT&CK to test detection pipelines, bolster network defense, and refine IR capabilities
  • Created custom Splunk dashboards with real-time correlation rules and anomaly visualizations to support threat monitoring and alerting

Automated Incident Response Platform

May 2025 – Present
Python Splunk AWS MITRE/NIST
  • Building IRBot, an automated incident response platform leveraging Suricata and Sysmon logs via Splunk on AWS EC2 for real-time threat detection and alert triage
  • Researching automated response strategies and workflow optimization techniques to develop efficient threat mitigation procedures and minimize incident response times
  • Designing Splunk dashboards with SPL to visualize incident timelines and response metrics; drafting NIST 800-61-aligned incident reports

AI-Driven Phishing Email Detector

Jun 2025
Python Flask scikit-learn Azure Docker
Live Demo GitHub
  • Built and deployed a phishing detection engine using TF-IDF and Random Forest with a fallback rule-based mode
  • Mapped threats to MITRE ATT&CK T1566.001/002 via heuristic analysis of sender patterns, URLs, and keywords
  • Containerized with Docker Compose, added Redis caching, non-root user enforcement, and Azure-ready structure

Coming Soon

More innovative projects and AI-driven solutions will be showcased here.