This repository contains a selection of my hands-on cybersecurity projects and lab-based practice.
The goal of this portfolio is to document practical work in blue team activities, SOC analysis, phishing investigation, web attack investigation, and network traffic analysis through controlled labs and investigation-based exercises.
Hands-on analysis of phishing emails and malicious document-based threats, including suspicious attachments, VBA-related techniques, and Excel 4.0 macro abuse.
Alert validation and triage practice based on multiple simulated SOC investigations involving phishing, malware, suspicious URLs, ransomware-related activity, and IOC-based analysis.
Investigation of suspicious HTTP activity and attacker behavior using access log analysis, web attack detection, and attack chain reconstruction.
HTTP and packet-level investigation focused on suspicious requests, malicious header content, and Shellshock-style exploitation patterns observed in traffic.
PCAP-based analysis of HTTP authentication traffic, showing how Basic Authentication credentials can be identified and recovered from unencrypted network communication.
A broader list of completed labs is available in additional-labs.md.
projects/→ Individual project documentationassets/→ Screenshots used in project README filesadditional-labs.md→ Additional practical labs and exercises
- Let's Defend
- TryHackMe
- Wireshark
- VirusTotal
- Burp Suite
This portfolio is focused on practical learning, investigation workflow, technical documentation, and continuous growth through controlled lab environments.