Skip to content
View UscTrojansDodgers56's full-sized avatar

Block or report UscTrojansDodgers56

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Hi, I'm Sean White

Cybersecurity professional transitioning into SOC analysis — SIEM detection, packet analysis, and identity attack detection. CompTIA Security+ certified, pursuing Microsoft SC-500.

Detection Lab Series

Skills

Microsoft Sentinel · KQL · Splunk · Wireshark · Microsoft Entra ID · Azure · MITRE ATT&CK · Incident Triage

Resume

View my resume

Connect

LinkedIn · YouTube

Pinned Loading

  1. malware-traffic-analysis-trickbot malware-traffic-analysis-trickbot Public

    Network forensics lab, full TrickBot infection traced from a PCAP using Wireshark, VirusTotal, and a custom Suricata detection rule.

  2. azure-ad-attack-detection-lab azure-ad-attack-detection-lab Public

    zure-based Active Directory attack detection lab — Kerberoasting, AS-REP Roasting, DCSync, and Pass-the-Hash detected in Microsoft Sentinel with KQL

  3. sentinel-ssh-brute-force-lab sentinel-ssh-brute-force-lab Public

    Microsoft Sentinel lab detecting live SSH brute force attacks using KQL analytics rules mapped to MITRE T1110. Built on Azure VM with real attacker traffic.

  4. wireshark-ssh-bruteforce-analysis wireshark-ssh-bruteforce-analysis Public

    Network-layer analysis of live SSH brute force traffic captured on an Azure VM — packet forensics, tool fingerprinting, and correlation with Microsoft Sentinel logs.

    HTML