My Work
SIEM (Security Information and Event Management)
Use a SIEM tool (Splunk) to monitor and analyze security events. Simulate an attack (e.g., brute force, DDoS, malware), and create alerts for suspicious behavior or security incidents.
- Splunk
- Log Aggregation
- Real-Time Monitoring
- Incident Detection and Response
- Alerting and Reporting
- Event Correlation
Network Traffic Analysis
Capture and analyze network traffic using Wireshark to identify potential security issues such as unencrypted traffic, packet sniffing, or suspicious protocols.
- Wireshark
- Packet Capture (PCAPs)
- Traffic Filtering and Analysis
- Protocol Analysis (TCP/UDP)
- tcpdump
- Network Anomalies
Web Application Vulnability Assessment
Perform a security assessment of a web application using Burp Suite to identify vulnerabilities like XSS, SQL injection, and others from the OWASP Top 10.
- Burp Suite
- OWASP
- Web Application Scanning
- Vulnability Exploration
- Proxy Intercepting
Keystroke Log Analyzer with Word Extraction and Pattern Detection
This is a simple keylogger utilizing a python script, as well as another python script to analyze the key log for pattern recognization for potential access to accounts.
- Keylogger
- Python Scripting
- Regex
- Pattern Recognization
