Dhenkanal, Odisha, India
When attackers move through an Active Directory environment, they leave traces — in Event IDs, Sysmon telemetry, and authentication logs. My job is to find them before damage is done. I'm a final-year CSE student who spent the last 2+ years building real SOC skills — not just watching tutorials. I deployed and hardened an Active Directory lab, ran BloodHound to map privilege escalation paths, configured Sysmon + Windows Event Forwarding, and wrote incident response playbooks from scratch. On the detection side, I built SPL queries in Splunk to hunt threats across the UNSW-NB15 intrusion dataset — covering Reconnaissance, DoS, and Exploit patterns — and correlated Event IDs 4624/4625 to detect RDP brute force attacks simulated with Hydra. Tools I work with: Splunk | Sysmon | Wazuh | BloodHound | PowerView | PowerShell | Kali Linux | MITRE ATT&CK Currently completing ISC2 Certified in Cybersecurity (CC) and actively seeking entry-level SOC Analyst roles . 📩 [email protected]