Security analyst and DFIR practitioner based in Chennai. I investigate real incidents for a living — malware, account takeovers, financial intrusions — and I build tools on the side to close gaps I keep running into at work.
Previously at Alibi Technologies, where I was deployed to the Office of the Commissioner of Police, Chennai working on live cybercrime cases across CCB, FIW, and ATS. Currently looking for my next role in SOC, DFIR, or threat intelligence.
I built these to solve problems I actually hit in my day-to-day work. Not coursework.
| Project | What it does |
|---|---|
| SOC Detection Lab | 32 MITRE ATT&CK detection rules validated end-to-end on Splunk + Wazuh. Tuned out real FPs — including svchost→lsass 0x1000 status-query noise that fires on every Windows box. |
| SOAR Alert Triage | n8n pipeline that auto-triages phishing emails and IP/URL alerts across 5 threat intel APIs with composite risk scoring and MITRE mapping. |
| APT Threat Actor Profiler | Profiles APT groups from MITRE STIX data — motivations, TTPs, targets, historical campaigns. Built to speed up threat intel writeups. |
| DPDP Compliance Tool | Self-assessment tool for India's DPDP Act 2023. 66 questions, 11 obligation areas, client-side PDF report. Live → |
| ISO 27001 Tracker | All 93 Annex A controls with maturity scoring, gap analysis, and a Stage-1 audit-readiness verdict. Live → |
IR & Forensics — Magnet AXIOM · Cellebrite · Autopsy · FTK · Volatility · chain of custody documentation
Detection & SIEM — Splunk · Wazuh · Sysmon · MITRE ATT&CK · Sigma · Cyber Kill Chain
Network Analysis — Wireshark · C2 infrastructure mapping · lateral movement reconstruction
VAPT — Burp Suite · Nessus · Nmap · Metasploit · OWASP Top 10
Scripting — Python · Bash
🔹 Alibi Technologies LLP — Junior Security Analyst / DFIR Analyst (Nov 2025 – May 2026) Started as an intern at Alibi (Jul 2025). Work got noticed — Alibi deployed me to the Office of the Commissioner of Police, Chennai in Oct 2025, and the team there kept me on full-time from Nov 2025. Worked across CCB (Central Crime Branch), FIW (Financial Investigation Wing), and ATS (Anti-Terrorism Squad) on live cybercrime cases. Investigated 150+ incidents end-to-end (malware, account takeovers, financial intrusions), performed forensic acquisition on 100+ Windows/Linux/mobile endpoints using Magnet AXIOM, Cellebrite, Autopsy, FTK, and Volatility — 200+ IOCs fed into client SIEM blocklists.
🔹 IBM Phemesoft — Summer Intern (Jun – Jul 2024) Designed a Cloud Security Governance Toolkit aligned to NIST CSF and MITRE ATT&CK.
- CompTIA Security+ (SY0-701)
- EC-Council CHFI Training / Workshops
- VECTOR — Where Systems Collapse (Vulnshields & Cyber Secured India × MKITOS × OPSWAT Academy, May–Jun 2026) Practical sessions: recon, web exploitation, access control vulnerabilities, API security, LLM attacks
B.Tech. CSE (Cybersecurity & Forensics) — UPES Dehradun, 2025