Azure lab to practice SOC/security engineering tasks

Updated cybersecurity lab

Configuring a Wazuh Active Response rule to quarantine an endpoint + a Shuffle workflow that creates a case on TheHive and sends an email alert.

Cloud projects from IT342 - Cloud Administration

Project page for IT490 - Systems Integration

A virtualized Active Directory and security operations center (SOC) environment using free and open source solutions (for the most part).

Addressing the vulnerabilities from the data exfiltration exercises

Getting a reverse shell on a Windows 11 endpoint and exfiltrating data from a file share

Setting up logging for Windows VM in Azure via Log Analytics Workspace

Creating a Sentinel workbook to map attacking IPs to geographical coordinates