Available for advisory engagements

Threat Hunting.
Done with discipline.

Documented hunt reports, detection engineering projects, and practical security guides — built for practitioners, written for clarity. This is the operational record, not the highlight reel.

View Hunt Reports About Me Advisory Inquiry
1+ Hunt Reports
MITRE ATT&CK Aligned Methodology
NIST / RMF Framework Coverage
2210 Target Series

Latest Hunt Reports

Documented threat hunts with methodology, findings, and detection logic.

All reports →
high

Detecting Lateral Movement via Abnormal Process Ancestry

A targeted hunt for lateral movement indicators — specifically credential dumping artifacts and anomalous child process relationships involving lsass.exe across endpoint telemetry.

Lateral Movement T1003.001 — LSASS Memory windowslsass
Read report →

What This Site Is

An operational record of security practice — built for credibility, not vanity. Every doc here represents actual work.

🔍

Hunt Reports

MITRE-aligned threat hunt documentation with hypotheses, scope, tooling, and detection rule output.

Browse hunts →
🏗️

Projects

Detection engineering labs, cloud security builds, and portfolio case studies with architecture and outcomes.

See projects →
📋

Guides

Short, actionable security checklists and practical guides — built for the people doing the work.

Read guides →
📐

Frameworks

NIST CSF 2.0, RMF, and control mapping notes aligned to government and enterprise security requirements.

View frameworks →

Security Guides

Practical checklists and how-tos for practitioners.

All guides →
Threat Hunting

Threat Hunting Starter Checklist

A practical checklist for teams launching their first threat hunt program — covering hypothesis development, data source scoping, tooling, and output documentation.

checklistthreat-huntinggetting-started
Read more →

The operator behind the reports.

From operational background to cloud security engineering — this site is the documentation trail. I build detection systems, map controls, and hunt threats for a living.

My full background →