Skip to content
View fizahmad's full-sized avatar
👋
👋
4 followers · 2 following

Highlights

  • Pro

Block or report fizahmad

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
fizahmad/README.md

Hi, I'm Fiza!

Typing SVG

I work in security operations and spend most of my time investigating alerts, reviewing logs, tuning detections, and understanding how incidents unfold across endpoints, identities, and cloud environments.

Currently Exploring

  • Threat detection and SIEM rule logic
  • Endpoint telemetry and EDR investigations
  • Windows event logs, Sysmon, and process behavior
  • KQL, AQL, PowerShell, and Python for security analysis
  • Cloud and identity-focused security monitoring
  • Digital forensics and incident response fundamentals

Certifications

SC-200 SC-300 SC-900 AZ-900

Tools & Technologies

SIEM & Security Platforms

Microsoft Sentinel IBM QRadar Falcon SIEM Wazuh Splunk

EDR & Endpoint Security

CrowdStrike Falcon Microsoft Defender Sysmon Sysinternals

Languages & Querying

KQL AQL PowerShell Python Bash

Analysis & Monitoring

Windows Event Logs Wireshark Linux Microsoft Azure Microsoft Entra ID

What You'll Find Here

  • SOC and blue team labs
  • SIEM detection logic
  • Threat simulation writeups
  • KQL and AQL queries
  • Incident investigation notes
  • Windows and cloud security learning projects

Outside of Security

  • Reading 📖
  • Sketching ✏️
  • Baking 🍪

Let's Connect

LinkedIn Email

Pinned Loading

  1. azure-sentinel-threat-lab azure-sentinel-threat-lab Public

    Cloud-based SOC lab built in Azure using Microsoft Sentinel, KQL, and Logic Apps to simulate attacks, detect threats, and automate incident response.

    2