Scripts & Projects
Security Tools • Automation • Lab Work • CTF Write-ups
$ ls -la ./projects
Hands-on tools and scripts built during self-study, TryHackMe labs, and home lab practice.
All projects are hosted on GitHub. Status: ● Active ● WIP ● Planned
Python script that parses Linux auth logs and Windows Event Logs, flags suspicious patterns (brute force attempts, privilege escalation), and outputs a structured CSV report. Built as part of SOC Level 1 TryHackMe path practice.
Lightweight Python port scanner using raw sockets. Supports TCP SYN scanning, service banner grabbing, and multi-threaded target sweeps. Built to understand how Nmap works under the hood.
Bash automation to provision a VirtualBox home lab — spins up pfSense firewall, Windows Server AD, and Kali Linux attacker VM with pre-configured network segments. Documented setup for practice and demonstration.
Python script that pulls alerts from a local Wazuh SIEM instance, scores them by severity using MITRE ATT&CK mappings, and auto-drafts incident tickets. Simulates a Tier 1 SOC analyst triage workflow.
Planned: A lightweight Python-based vulnerability scanner integrating CVE lookups against discovered service banners. Inspired by Hack The Box enumeration methodology.
CTF & Lab Write-ups
TryHackMe — SOC Level 1 Path
Network analysis, SIEM basics, phishing analysis, endpoint security
Hack The Box — Starting Point Machines
Enumeration, privilege escalation, web vulnerabilities
Available for IT, Cybersecurity, and Graduate-Level Technical Roles