Projects
View the tools and experiments that I'm working on.
ThreatPulse — Threat Intel Aggregator
A threat intelligence project that pulls indicators of compromise (IOCs) from multiple open-source feeds, deduplicates them, and enriches each entry with contextual metadata. Designed to give analysts a single pane of glass for fast IOC lookups during triage.
View on GitHubSOC Lab Environment
A home lab I'm planning to build for hands-on detection engineering practice. The goal: stand up Windows and Linux endpoints forwarding Sysmon and auditd telemetry to a Splunk SIEM, then write and tune detection rules against scripted attack simulations from the Atomic Red Team library — exercising the full detect-validate-tune loop end-to-end.
Coming soon