Cybersecurity Projects
This page includes completed case studies and planned projects across SOC analysis, detection engineering, security architecture, system hardening, cloud security, and API security.
5
Completed Projects
23
Total Portfolio Roadmap
18
Planned Projects
Category
Status
Showing 23 projects
Security Lab
CompletedSecurity Operations / Security Engineering
Built a virtualized security lab using Wazuh, Kali Linux, Linux Server, Windows Endpoint, Sysmon, and an isolated internal network for threat simulation and detection.
Security Architecture
CompletedJunior Security Engineer / Security Architect Track
Designed a secure segmented network architecture for Acme AeroTech using VLANs, a DMZ, firewall rules, least privilege, and risk-based decision making.
Detection Engineering
CompletedSOC Analyst / Detection Engineering
Created and validated a custom Wazuh detection rule for SSH brute-force activity using Kali Linux, Hydra, Linux authentication logs, and Level 12 alert validation.
SOC / Security Analyst
CompletedSOC Analyst / Detection Engineering
Implemented layered Wazuh SIEM correlation rules to detect SSH brute-force activity, escalating from early warning to high-severity alerts using Hydra attack simulation.
Application Security
CompletedAPI Security / Security Engineering
Identified and secured API vulnerabilities by implementing JWT authentication, RBAC, rate limiting, input validation, and security logging in a Node.js/Express REST API.
SOC / Security Analyst
Coming SoonSOC Analyst
Analyze simulated phishing artifacts, investigate indicators, document findings, and recommend mitigation steps.
SOC / Security Analyst
Coming SoonThreat Hunting
Hunt for suspicious PowerShell activity using Windows logs, Sysmon telemetry, and SIEM-based investigation.
SOC / Security Analyst
Coming SoonSecurity Analyst
Review web server logs for suspicious behavior, identify patterns, and document investigation findings.
SOC / Security Analyst
Coming SoonSOC Analyst
Triage malware-related alerts, review evidence, determine severity, and recommend containment steps.
SOC / Security Analyst
Coming SoonDetection Support
Tune noisy alerts, reduce false positives, adjust severity, and improve SIEM detection quality.
SOC / Security Analyst
Coming SoonDetection Engineering
Simulate and detect movement between systems, review logs, and map detection opportunities.
SOC / Security Analyst
Coming SoonThreat Intelligence
Use indicators such as IPs, domains, hashes, and artifacts to enrich investigations and document findings.
Security Engineering
Coming SoonJunior Security Engineer
Review Linux configurations, SSH security, permissions, firewall settings, updates, and audit checks.
Security Engineering
Coming SoonJunior Security Engineer
Review Windows security settings, logging, endpoint visibility, account hygiene, and baseline controls.
Security Engineering
Coming SoonVulnerability Management
Identify weaknesses, validate findings, prioritize risk, and document remediation recommendations.
Security Engineering
Coming SoonSecurity Engineering
Review firewall rules, exposed ports, allowed services, and network boundary controls.
Security Engineering
Coming SoonWeb Security
Review Nginx configuration, headers, TLS, logging, access controls, and hardening recommendations.
Security Engineering
Coming SoonIdentity Security
Review users, roles, permissions, access patterns, and least privilege recommendations.
Security Engineering
Coming SoonDetection Engineering
Build, test, validate, and document detection rules for realistic attack scenarios.
Cloud / Architecture
Coming SoonCloud Security Support
Review insecure cloud settings, public exposure, weak permissions, logging gaps, and remediation steps.
Cloud / Architecture
Coming SoonAPI Security Support
Test API authentication, authorization, input validation, logging, and data exposure risks.
Cloud / Architecture
Coming SoonSecurity Engineering
Design a Zero Trust-style architecture using identity-aware access, segmentation, least privilege, and monitoring.
Cloud / Architecture
Coming SoonSecurity Engineering / SOC
Plan what should be logged, where logs should go, how they support detection, and how coverage can be improved.
I didn’t want this to be just a list of projects. Each completed case study represents the full process: setting up the environment, testing the scenario, collecting evidence, troubleshooting problems, and explaining what I learned from it. The projects marked as coming soon are part of my roadmap. They give me a clear direction instead of jumping between random topics, and as each one is completed, it will become a full case study with evidence and documentation.
My goal is for this page to show progression over time. I am not trying to rush through projects just to add more cards. I want each project to help me become better at the work and make that growth visible.