Portfolio

Simulated identity-based attacks in Microsoft 365 and Azure environments, including MFA failures, phishing, and impossible travel.

FIN7 emulation setup guide: Deploy red & blue team labs with Gophish, Sysmon, Splunk, & EDR to test endpoint threat detection.

Purple Team slashed detection to <1 min, containment to 5 mins, and cut financial risk by $58K/incident with enhanced endpoint detection.