My Work
My Security Projects
Cybersecurity Project
Microsoft Sentinel KQL Detection – MITRE ATT&CK Brute-Force Attack & Automated Azure VM Shutdown (SOAR)
Technologies Used: Microsoft Sentinel, KQL, Azure Monitor Agent, Logic Apps, Microsoft Defender for Cloud
Aim: Detect brute-force login attempts (MITRE ATT&CK T1110) in real time and automatically isolate targeted Azure VMs by shutting them down via SOAR automation, reducing containment time from over 10 minutes to under 1 minute.
Case Study Github
Cybersecurity Project App
Azure Network Security – Private Endpoint Hardening with Azure Firewall & Zero Trust Controls
Technologies Used: Azure Storage, Azure SQL, Private DNS Zones, NSG Rules, Azure Firewall
Aim: Eliminate public internet exposure for sensitive Azure resources by implementing private endpoints, DNS zone mapping, and layered network restrictions — reducing attack surface from 100% public to 0% public exposure.
Case Study Github
Cybersecurity Project
Microsoft Defender TVM – CVE Remediation & Endpoint Security Hardening via Intune
Technologies Used: Microsoft Defender TVM, Intune, PowerShell, Endpoint Security Policies
Aim: Reduce exposure score by 35% within 7 days by prioritising and deploying remediations across Windows endpoints
via Intune and PowerShell scripts — targeting CVEs with high exploit probability and active exploits.
Remediation Plan
Github
Cybersecurity Project
Microsoft Defender ASR – Phishing & Malware Prevention via Intune Endpoint Security
Technologies Used: Microsoft Intune, Microsoft Defender for Endpoint, ASR Rules, Endpoint Security Profiles
Aim: Block 100% of common phishing payloads and reduce attack surface score using a strategic set of ASR rules,
configured and deployed via Intune to managed devices in a security lab environment.
Policy Pack
Github