Investigation Portfolio
Structured cyber threat investigations completed using realistic enterprise scenarios from the KC7 Cyber Security Analyst program. Each report documents analytical methodology, evidence collection, KQL investigations, IOC analysis, MITRE ATT&CK mapping, and investigation findings. These are scenario-based investigations developed in a training environment — not real-world client engagements.
A dual-track insider-threat investigation at Encryptodera Financial: a contractor's 27-day FTP exfiltration of cold-storage crypto-wallet secrets running in parallel with a hijacked-identity intrusion that escalates to a domain-wide Active Directory...
Triaging a complex supply-chain intrusion targeting regional energy distribution. Tracks the complete lifecycle from perimeter XSS probing and weaponized phishing documents to lateral movement and source-code exfiltration using raw web...
Investigating a high-stakes, state-sponsored campaign targeting election infrastructure. Reconstructing attacker persistence mechanisms, multi-hop C2 structures, and domain registrar anomalies.