Aspiring cybersecurity professional specializing in threat detection, vulnerability assessment, and security operations
Cybersecurity fresher with hands-on experience in vulnerability scanning, penetration testing fundamentals, and security operations. Passionate about building resilient defense systems, identifying vulnerabilities through structured threat modelling, and streamlining incident response workflows through automation.
CEH certified with all 5 Forage cybersecurity virtual experience programs completed. Experienced with ELK SIEM, Azure, MITRE ATT&CK, and enterprise security concepts. Focused on SOC L1 operations, threat detection, and incident response.
Tools, technologies, and frameworks in my security toolkit
Select a volume to access project archives
Built a Python/Nmap/Burp Suite/SQLMap scanning platform targeting OWASP Top 10 vulnerabilities; integrated ELK Stack for real-time threat dashboards — replicating enterprise SIEM and security monitoring workflows.
Engineered a privacy-preserving security product using federated learning; conducted adversarial threat modelling to evaluate and harden system resilience with multi-modal authentication.
Built a Wazuh SIEM lab using Wazuh OVA, Kali Linux, and Ubuntu to detect SSH brute-force activity. Configured Kali as a monitored endpoint with the Wazuh Agent and used Ubuntu to generate SSH password-guessing attempts with Hydra. Investigated alerts in Wazuh Threat Hunting, validated evidence using /var/log/auth.log, identified source IP and target user details, and mapped the activity to MITRE ATT&CK Credential Access / Brute Force. Documented the incident with SOC-style findings, severity, evidence, and remediation recommendations.
Performed a SOC-style phishing email investigation using Kali Linux by analyzing suspicious email content, reviewing email headers, extracting IOCs such as sender email, reply-to address, URLs, domains, and IP addresses, and validating phishing indicators including SPF failure, missing DKIM, DMARC failure, Reply-To mismatch, typosquatting, and urgency-based social engineering. Mapped the activity to MITRE ATT&CK techniques including T1566 Phishing, T1566.002 Spearphishing Link, and T1204 User Execution, then prepared a SOC-style incident report with severity, impact, evidence, final verdict, containment actions, and remediation recommendations.
Built a SOC lab using Splunk, Ubuntu, Kali Linux, and VirtualBox to monitor security events. Configured log ingestion for Linux authentication and firewall logs, simulated SSH brute-force attempts and network scanning, created SPL detection queries, alerts, and dashboard visualizations for security monitoring and incident analysis.
Professional journey and virtual experience programmes
Professional certifications and accreditations
Built a strong foundation in cybersecurity principles, ethical hacking, security controls, threat analysis, and defensive security practices.
Focused on SOC workflows, alert investigation, threat intelligence fundamentals, incident handling, and security monitoring concepts.
Covered cloud fundamentals, AWS cloud security principles, Azure services, identity, access management, and shared responsibility concepts.
Strengthened knowledge in endpoint defense, ethical hacking fundamentals, web application risks, OWASP Top 10, and critical infrastructure security.
Establish encrypted communication channel