Hands-on technical projects building security infrastructure, analyzing threats, and learning through experimentation.
Deployed T-Pot honeypot on Google Cloud Platform to capture and analyze live attack traffic. Analyzing adversary tactics, techniques, and procedures (TTPs) from real-world threat actors. Correlating indicators of compromise (IOCs) with threat intelligence feeds.
Completed hands-on study for GIAC Certified Incident Handler certification through SANS SEC504 coursework, practicing incident response procedures, malware analysis, and forensic investigation techniques in lab environments. Passed the GCIH exam in February 2026 with a 98%.
Clustered Proxmox infrastructure built for blue team operations and threat detection. Runs Wazuh SIEM for log analysis, Suricata IDS for network monitoring, Windows Active Directory for enterprise simulation, and containerized vulnerable applications for security testing.
Read technical writeup →Built and deployed a cryptocurrency token on Ethereum's Sepolia testnet to understand blockchain security from the ground up. Explored smart contract vulnerabilities, transaction security, and the fundamentals of decentralized systems through hands-on development with Solidity and Hardhat.
Read technical writeup →