SOC · DFIR · Threat Intel

Threat Hunter & Incident Responder

Malware Analysis | Threat Intelligence | Cybersecurity Researcher. 5+ years hunting APTs, leading incident response, and strengthening cyber resilience.

🔍 CHFI (EC-Council) 🛡️ JNCIA-Junos ⚡ INE Junior Penetration Tester 📊 Google Data Analytics ☁️ IBM Cybersecurity Analyst 🔒 Fortinet Certified Associate ✅ Google Cybersecurity

Report Incident Download CV (DFIR)

Cyber Defense Profile

Incident responder & threat hunter with expertise in analyzing complex malware campaigns, digital forensics, and proactive threat intelligence. Experienced in leading blue team exercises, building SIEM use cases, and reverse engineering. Holds globally recognized certifications including CHFI, JNCIA, INE eJPT, and multiple Cybersecurity Analyst certs from Google, IBM, and Fortinet. Passionate about adversary emulation and reducing dwell time.

CHFI v10

Computer Hacking Forensic Investigator

JNCIA-Junos

Juniper Networks Certified Associate

INE eJPT

Junior Penetration Tester

Google Data Analytics

Data-driven security insights

Technical Arsenal

SIEM (Splunk/QRadar) Wireshark / tcpdump Volatility / Redline YARA / Sigma rules Python / PowerShell MISP / OpenCTI EDR (CrowdStrike/SentinelOne) RE: IDA Pro / Ghidra MITRE ATT&CK Forensics: Autopsy/FTK Cloud Security (AWS/Azure) KQL / SPL query

Incident Response & Research

Ransomware IR Simulation

Full lifecycle response: containment, forensic acquisition, decryption analysis, and root-cause mapping to MITRE ATT&CK.

RE / GhidraKAPEVelociraptor

Threat Intelligence Feed

Enriched IOC feed from OSINT + MISP, correlated with SIEM to detect APT infrastructure with < 20 min TTD.

PythonMISPThreatQ

Malware Analysis Sandbox

Automated dynamic analysis (CAPE/Cuckoo) + static unpacking. Produced YARA rules for in-the-wild samples.

YARACAPEIDA

Collaborate / Threat Intel Sharing

Official Email
[email protected]

PGP Key
Available upon request for secure communication

Malware Samples & IOCs
github.com/z3r0w3i