Incident Response Simulation

Back to portfolio

Problem

Need repeatable incident response drills using realistic telemetry.

Approach

Performed IOC mapping, packet analysis, and SIEM correlation across Wireshark, Snort, Splunk, and MISP.

Attack Surface

Credential abuse, suspicious traffic, endpoint anomalies, and lateral movement indicators.

Result

Improved response readiness and identified detection coverage gaps.