The Active Directory Home Lab Project helps you set up a virtual environment to learn AD administration, system monitoring with Splunk, and attack simulation using Kali Linux and Atomic Red Team. Gain hands-on experience in configuring domains, managing users, and analyzing security telemetry in a safe and controlled setup.

A hands-on project documenting the installation, configuration, and security of an Active Directory domain with Splunk monitoring and penetration testing using Kali Linux.

Simulates an enterprise Windows environment inside Azure to practice Active Directory management, SIEM monitoring with Splunk, offensive security techniques using Kali Linux, and adversary simulation with Atomic Red Team. The project focuses on generating security telemetry, analyzing malicious activity, and developing SOC-style remediation.

This lab simulates cyberattacks to help you learn how to detect and analyze threats. Kali Linux acts as the attacker, Windows 11 logs activities with Sysmon, and Splunk collects and analyzes those logs. It’s used to practice threat detection, incident response, and security monitoring.

I explore several solutions to monitoring an Ubuntu system including Auditd and Splunk Add-on for Unix and Linux. This repo includes the vagrant file needed for building the test environments.

Splunk Enterprise SIEM home lab with Windows and Linux log ingestion, Sysmon integration, and security monitoring dashboard.

Security Operations Center (SOC) lab demonstrating: Linux monitoring, SSH brute-force detection, dashboards, and real-time alerting with Splunk SIEM

Set up and operate security monitoring and analysis tools such as SIEM (Splunk, SplunkForwarder), IDS, along with defense tools in Windows and Linux environments.

This project sets up a virtual home lab for security monitoring using Snort (IDS) and Splunk (SIEM). It includes configuring Snort on Ubuntu, simulating attacks from Kali Linux, analyzing traffic with Wireshark, and visualizing alerts in Splunk.

SecureSystem ensures Ubuntu system security using Splunk, Nessus, and Kali Linux. It starts with vulnerability assessment, followed by continuous monitoring and automated patching. The project aims to maintain basic security standards, safeguarding the system against potential threats with proactive measures.

This project involves building and securing an Active Directory environment by setting up virtual machines, configuring Sysmon and Splunk for monitoring, and installing Active Directory. It also includes testing security with brute force attacks from Kali Linux, viewing telemetry in Splunk, and running atomic tests with ART.

## About Me I am an aspiring cybersecurity analyst with hands-on experience in labs, SOC fundamentals, and security tools. ## Skills - Network fundamentals - Security monitoring - Basic incident analysis - Linux & Windows basics ## Tools - Wireshark - Nmap - Splunk (beginner) - TryHackMe ## Projects - Network fundamentals lab (in progress)

This SOC-style Splunk lab simulates a real-world Security Operations Centre by centrally collecting, indexing, and analysing logs from multiple operating systems. It includes a Splunk Enterprise Indexer on Ubuntu and Universal Forwarders on Kali Linux and Windows Server, with logs forwarded over TCP (port 9997) for monitoring and validation.

Built an isolated VirtualBox home lab with Windows 11 and Kali Linux VMs, configured internal networking, and deployed Splunk with Sysmon for log collection. Snapshots ensured safe testing while I generated and analyzed security events to practice monitoring, detection, and incident response.

Analyzing SIEM detection coverage by exploiting vulnerable services and identifying security monitoring gaps. This project simulates cyberattacks using Kali Linux and Metasploit, collects system and network logs, and compares raw attack data with SIEM alerts (Splunk/ELK) to evaluate detection effectiveness.