name : Ashish Kumar
degree : B.Tech Computer Science & Engineering
university : MMMUT Gorakhpur
graduating : June 2027
location : India
target_roles: [ SOC Analyst, Blue Team Engineer, Digital Forensics ]Blue team engineer who builds real tools — not just collects certifications. My work covers threat detection, EVTX log forensics, and network traffic analysis mapped to MITRE ATT&CK — the kind of depth that matters in a real SOC or DFIR role.
🛡️ SentinelXC++ Network Intrusion Detection System A modular NIDS built from scratch — live traffic capture, custom parsing pipeline, and MITRE ATT&CK-tagged structured alerts.
|
Multi-Auth Artifact Correlation Engine Correlates Windows auth artifacts across Local, MSA, RDP & Kerberos — surfaces anomalous access from raw EVTX logs.
|
|
Network Traffic Forensics Tool Deep PCAP inspection — protocol dissection, IOC extraction, and anomaly flagging from captured network traffic.
|
Currently building tools that push into:
Watch the GitHub — more dropping soon. |
Languages & Scripting
| Domain | Tools & Techniques |
|---|---|
| 🔵 Threat Detection | MITRE ATT&CK · Sigma Rules · Custom Detection Logic · Alert Triage |
| 🪟 Windows Forensics | EVTX Parsing · Event IDs · FTK Imager · Autopsy · Registry Analysis |
| 🌐 Network Analysis | PCAP · Wireshark · libpcap · Protocol Dissection · IOC Extraction |
| 🚨 Incident Response | Log Correlation · Timeline Analysis · Artifact Collection |
| 🔎 OSINT | Passive Recon · Threat Intel · Open-Source Investigation |
| Status | Certification / Platform |
|---|---|
| 🟢 Active | TryHackMe — Top 3% Globally |
| 🟡 In Progress | LetsDefend · CyberDefenders · PortSwigger Web Security Academy |
| 📌 Next Target | CompTIA Security+ |
| 🗺️ Roadmap | CySA+ → TCM Security PTP → OSCP |
| 📄 Research | IEEE Paper — Windows Auth Forensics (Dr. Vimal Kumar, MMMUT) |
