Skip to content

Oligo12/cyber-projects

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

31 Commits
detection-lab
detection-lab
 
 
legacy
legacy
 
 
malware-analysis
malware-analysis
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Cybersecurity Projects

Author: Nikola Marković
Status: ongoing
Last updated: 2025-10-16
Repo: https://github.com/Oligo12/cyber-projects/
Email: nikola.z.markovic@pm.me
LinkedIn: https://www.linkedin.com/in/nikolazmarkovic/

Two ongoing, separate labs:

  • malware-analysis/ - isolated lab for learning manual Windows malware analysis (e.g., ProcMon, Wireshark). I document behaviors/TTPs per sample.
  • detection-lab/ - small Sentinel-focused lab where I drop known components from the analyses to search logs and prototype KQL detections (plus basic response). It’s separate because AMA/agents can break after VM snapshot restores; this lab is manually remediated and kept "good enough" for hunting known behaviors.
  • legacy/Legacy-Sentinel-Lab - my first Sentinel-only lab; the initial encounter with Sentinel.

Current samples analyzed: Agent Tesla, QuasarRAT, WannaCry.

License: The Unlicense (public domain).

About

Blue-team lab: malware analysis + detection engineering

Topics

cybersecurity sysmon malware-analysis blue-team kql detection-engineering velociraptor windows-forensics microsoft-sentinel

Resources

Readme

License

Unlicense license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published