Find relevant incidents, logs, events, and alerts to all of your incidents. [Attack Flows, Attack Chains, & Root Cause Discovery - NO LLMs, NO Queries, Just Explainable Machine Learning] >> Use it for free here: https://app.cypienta.io

Building one Solution for Threat management and detection for you network with Open source SOC solution.

ALX System Engineering & DevOps portfolio with cybersecurity enhancements. Bash automation for log analysis, system hardening, incident response, zero-trust SSH, compliance auditing (CIS/NIST), threat hunting, and DevSecOps pipelines. Proven SOC analyst toolkit – built on Ubuntu 20.04.

AI-powered security alert triage system with multi-source threat intelligence, intelligent caching, and REST API for SIEM/SOAR integration

🛡️ CyberSentinel – Threat Intel + Log Correlation Dashboard. An analyst-grade security tool that ingests threat intelligence, parses SSH/Apache logs, correlates IOCs, and generates real-time alerts.

A privacy-first, local AI assistant for SOC analysts and threat hunters. Features a RAG-based chat using the MITRE ATT&CK dataset, automated PDF threat report summarization, and IoC extraction. Powered by local LLMs (Phi-3/LLaMA 3 via Ollama) to ensure no data leaves your device.

AI-powered SOC triage POC using Flask and Hugging Face to fetch SIEM alerts, enrich them, and generate structured Markdown reports.

Secure Bash automation tool for SOC and sysadmin updates on Ubuntu and Pop!_OS. Enforces hardening, logging, and compliance.

ICS Incident Response Automation Framework Python framework for executing automated incident response playbooks in ICS/SCADA environments. Supports network isolation, forensic preservation, logic restoration, and safety system interventions. Designed for defenders, researchers, and red team simulations in operational technology networks.

🛡️ Explore hands-on cybersecurity projects designed for learning and experimentation with offensive and defensive tools, automation scripts, and real-world tactics.