Skip to content
View iamahmedsalam's full-sized avatar
1 follower · 0 following

Block or report iamahmedsalam

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
iamahmedsalam/README.md

Ahmed Salam

AI-Augmented SOC Analyst — building real detection capabilities, incident response playbooks, and hands-on security projects.

CompTIA Security+ Certified · TryHackMe Top 2% · SOC Level 1 Certified

What I'm Building

🛡️ Home SOC Lab v2.0 — Production-grade 4-VM lab with Wazuh SIEM, 11 custom MITRE ATT&CK detection rules, Atomic Red Team simulation (8/10 detected), and 3 professional incident reports.

🔰 IR Playbooks + Live Drills — 5 incident response playbooks validated through live attack drills — real alert triage, forensic artifact extraction, LOLBIN identification, and evidence-preserving containment. MTTD < 3 seconds across all drills.

Skills

Detection & Response · Wazuh SIEM · Custom Rule Authoring · MITRE ATT&CK · Sysmon · Incident Response Playbooks · Alert Triage · Forensic Analysis

Attack Simulation · Atomic Red Team · Hydra · LOLBIN Identification · Purple Team Methodology

Platforms · Windows Event Logs · Linux auth.log · VirtualBox · Kali Linux

Stats

TryHackMe   132 rooms · 30 badges · Top 2% globally

Connect

Portfolio   LinkedIn   Email

Popular repositories Loading

  1. iamahmedsalam iamahmedsalam Public

    Config files for my GitHub profile.

    1

  2. SOC-Analyst-Portfolio SOC-Analyst-Portfolio Public

    My journey to SOC Analyst: Hands-on projects with Wazuh, Sysmon, and more

    HTML 1

  3. home-soc-lab home-soc-lab Public

    Home SOC Lab v2.0 — Wazuh SIEM with 10 custom MITRE ATT&CK detection rules, Atomic Red Team simulation (8/10 detected), and 3 professional incident reports.

    1

  4. incident-response-playbooks incident-response-playbooks Public

    SOC L1 Incident Response Playbooks + Live Drills — 5 attack scenarios investigated with real Wazuh SIEM alerts

    1