Useful resources for SOC Analyst and SOC Analyst candidates.

The repository is a valuable resource for individuals looking to enhance their knowledge and skills in cybersecurity. It provides in-depth materials and guides for various cybersecurity domains.

Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, podcasts, Twitter/X accounts and a set of tools relevant to the role of SOC analyst.

🛡️ Master the essentials of SOC/Security Analysis with our 12-day SOC Analyst Prerequisites Learning Path, covering Linux, Windows, networking, scripting, and penetration testing—your key to a solid foundation in information security. 🚀

Built a mini HoneyNet in Azure and ingest log sources from various resources into a Log Analytics workspace

A curated collection of essential resources, tools, and references for Security Operations Center (SOC) analysts.

A hands-on, end-to-end cybersecurity SOC analyst training lab designed to simulate real-world scenarios in a safe environment. This 30-day challenge walks through setting up a full SOC infrastructure and investigating common attack patterns using industry tools.

I worked on a Red Team vs Blue Team scenario in which i played the role of both penetration tester and SOC analyst.

Ultimate Cybersecurity Roadmap (2025 Edition) | Beginner to Advanced Guide | Learn Ethical Hacking, SOC Analysis, Threat Hunting, Incident Response, and More by Shaikh Minhaj (Cyber With Minhaj)

This controlled lab environment emphasizes practical cybersecurity skills, ethical practices, and the importance of proactive defense strategies.

A script to that checks for active connections to known malicious foreign IP addresses.

SOCIMP: design, build, implement and become a SOC Analyst in a foundational Security Operation Center enviroment.

SOC Analyst Automation using a RAG model integrates a knowledge retrieval system with generative AI to automate SOC Level-1 tasks. It processes server logs, retrieves relevant security insights, and generates accurate responses, enhancing incident analysis, reducing response times, and improving efficiency in handling cybersecurity threats through

Information Security, Risk mgmt. and Forensics.

Forwards windows events to Splunk.

A collection of sources of documentation, as well as field best practices, to build/run a SOC

Setting Up Wazuh SIEM/XDR Homelab and Integration of Microsoft Defender into it.

Hi! I’m Abdullahi Abdinoor Mohamed, and this is my cybersecurity portfolio. Here, I showcase my hands-on experience, projects, and knowledge in the field of cybersecurity, ethical hacking, and IT security.

Utilizes the VirusTotal API v3 to scan files for potential malware or suspicious behavior and send alert in Telegram.