Skip to content
View avulman's full-sized avatar
5 followers · 4 following

Achievements

Achievement: Pull Sharkx3Achievement: Quickdraw

Achievements

Achievement: Pull Sharkx3Achievement: Quickdraw

Block or report avulman

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
avulman/README.md

Hi, my name is Anton! 👋

Projects

Project Description
Adversary Detection as Code Lab Built a production-style Detection Engineering Platform with CI/CD, treating detections as code: version-controlled, tested, and automatically deployed through GitHub Actions pipelines. The lab simulates a small enterprise environment across five systems, with detections validated using JSON event injection (Splunk), PCAP replay (Suricata), and structured fixture evaluation (Sigma) before deployment via REST API and Playwright UI automation.
Enterprise Phishing SOAR Automation Built a production-style phishing detection and response automation platform integrating Microsoft 365, Microsoft Graph API, ServiceNow, and external threat intelligence. Automatically ingests reported phishing emails, extracts and enriches IOCs, calculates threat risk, hunts for impacted users, and creates ServiceNow incidents using Python-based automation on a Linux host.
Active Directory Splunk Lab Designed and deployed a multi-VM Active Directory lab environment with Splunk SIEM and Sysmon for centralized logging and endpoint telemetry. Simulated brute force attacks using Crowbar, analyzed attack activity in Splunk, and leveraged Atomic Red Team and MITRE ATT&CK techniques to validate detection and monitoring capabilities.

Certifications

HackTheBox Certified Defensive Security Analyst (CDSA)

CompTIA Security+

AZ-900

Pinned Loading

  1. avulman avulman Public

    My journey in computer science has led me to develop a passion for cybersecurity, and I am now eager to transition into this field! Feel free to browse through my profile to view some of my projects.

  2. raspberrypi-geotracking-device raspberrypi-geotracking-device Public

    The Raspberry Pi GPS Tracker monitors vehicle speed in real-time, flagging predefined speed violations. Using a Raspberry Pi and USB GPS module, it records incidents on a USB drive. A desktop scri…

    Python 5 1

  3. keylogger-cpp keylogger-cpp Public

    This is a full-coverage keylogger written in C++ for Windows. It logs standard keyboard and mouse presses and writes them to a designated file. Each key press is recorded along with a human-readabl…

    C++ 2

  4. active-directory-project active-directory-project Public

    The lab involves setting up a virtualized environment with Oracle VM VirtualBox, creating Windows 10, Kali Linux, Windows Server, and Ubuntu Server VMs. Tools like Splunk, Sysmon, and Crowbar are u…

    7 1

  5. enterprise-phishing-soar-automation enterprise-phishing-soar-automation Public

    Enterprise-grade phishing detection and automated incident response platform integrating Microsoft Graph, ServiceNow, VirusTotal, and AbuseIPDB.

    Python 1 1

  6. adversary-detection-as-code-lab adversary-detection-as-code-lab Public

    Adversary emulation detection lab built to validate host and network detections against MITRE ATT&CK techniques using Splunk, Sysmon, Security Onion, Active Directory, and controlled attack simulat…

    Python