root@rumais:~# enumerate --surface web

root@rumais:~# whoami

Cyber Threat Detection Engineer with experience in SOC operations, SIEM deployment, threat simulation, and detection engineering.

Current Focus Detection Engineering | Purple Team Operations
Core Stack Wazuh SIEM, CrowdStrike and SentinelOne EDR/XDR, Atomic Red Team, VECTR, Sigma, YARA, MISP, Azure Defender

Profile

I work across detection engineering, SOC monitoring, and threat simulation. My work focuses on testing defensive visibility, improving detection quality, and helping response teams act faster with better telemetry.

What I Work On

  • Improve detection coverage by finding visibility gaps and tuning rules.
  • Map attacker behavior to MITRE ATT&CK and validate controls through simulation.
  • Support SOC teams with practical analysis, reporting, and response improvements.

Focus Areas

SOC Monitoring SIEM Implementation Purple Teaming Detection Engineering MITRE ATT&CK Ransomware Simulation Phishing Analysis Malware Sandboxing

Tools

Python Bash Wazuh CrowdStrike SentinelOne Atomic Red Team VECTR Sigma YARA Ghidra Burp Suite Wireshark MISP Kali Ubuntu Windows CentOS Fedora

Access Paths

profile experience certifications contact

Profile View

Detection engineering, purple-team validation, malware analysis, and security tooling integration with a focus on practical defensive improvement.

Detection Rules Threat Simulation EDR/XDR SOC Workflows ATT&CK Mapping Telemetry Analysis

Verified Credentials

GCFA badge GCFA GIAC Certified Forensic Analyst
EC-Council logo CPENTv1 EC-Council
EC-Council logo CEH v11 EC-Council
Microsoft logo SC-900 Microsoft
Microsoft logo AZ-900 Microsoft
Fortinet logo NSE 1 Fortinet

TryHackMe