Cybersecurity Project

Sentinel KQL Detection – Brute-Force & Auto VM Shutdown (SOAR)

Technologies: Sentinel, KQL, AMA, Logic Apps, Defender for Cloud

Aim: Detect brute-force (T1110) in real time and auto-isolate Azure VMs by shutdown, cutting containment from 10+ mins to <1.

Case Study Github

Cybersecurity Project App

Azure Network Security – Private Endpoints with Firewall & Zero Trust

Technologies Used: Azure Storage, SQL, Private DNS, NSGs, Firewall

Aim: Eliminate public access with private endpoints, DNS mapping, and layered restrictions, reducing exposure from 100% to 0%.

Case Study Github

Cybersecurity Project

Defender TVM – CVE Remediation & Endpoint Hardening with Intune

Technologies Used: Defender TVM, Intune, PowerShell, Endpoint Policies

Aim: Cut exposure score 35% in 7 days by deploying Intune + PowerShell remediations targeting high-risk CVEs.
Remediation Plan Github

Cybersecurity Project

Defender ASR – Phishing & Malware Prevention with Intune

Technologies Used: Intune, Defender for Endpoint, ASR, Endpoint Profiles

Aim: Block phishing payloads and shrink attack surface using ASR rules deployed via Intune to managed devices.
Policy Pack Github

Cybersecurity Project

Security Engineer Lab

Technologies UsedpfSense, VPN, Windows Server 2019 (AD, DNS, DHCP, File Services), Windows 10, Linux, Kali, VMware, Sysmon, Audit Policy, Wireshark, Event Logs, Kerberos, NTFS, Detection Engineering

Aim: Built secure lab with pfSense, AD/DNS/DHCP, VPN, and endpoint visibility, reducing misconfigs and blind spots to near-zero..

Case Study Github