ATT&CK Detection Lab
Local cybersecurity lab for simulating MITRE ATT&CK techniques and detecting them with Elastic SIEM — Atomic Red Team against a Linux target, logs shipped to Kibana.
Blue-Team
Memory Forensics with Volatility — WinXP SP2 Dump Analysis
Full walkthrough of a Windows XP SP2 memory dump using Volatility 2.6.1 — 14 plugins covering process enumeration, hidden process detection, network connections, registry artifacts, kernel modules, and live memory inspection via volshell.
Full SIEM Deployment
End-to-end SOC stack deployment: Elastic Stack, Wazuh, Suricata, MISP, TheHive and Cortex across 6 VMs — from log collection to incident management.