A comprehensive SOC Analyst project that includes detection rules, attack simulations, automated responses, and SIEM configuration.

this is a an AI-powered infrastructure solution to automate cybersecurity incident detection, response, and mitigation, enhancing organizational resilience against cyber threats: TSYP CS Challenge solution.

SIEM platform with Sigma correlation, MFA-secured console, command palette search, and integrated case management

Open Source SIEM with 1-Click Deploy to AWS

Real-time network packet capture and analysis using Moloch (Arkime), Wireshark, and Elastic Stack to detect anomalies, visualize patterns, and enhance cybersecurity.

Elastic Security information and event management Lab Project

Automated SIEM tool that detects and blocks malicious IP addresses in real-time using AbuseIPDB threat intelligence and Windows Firewall integration. Perfect for SOC analysts and security teams.

Splunk Material and Lab Instructions