Skip to content
View hal-imaxabdi's full-sized avatar
0 followers · 10 following

Block or report hal-imaxabdi

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please donโ€™t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this userโ€™s behavior. Learn more about reporting abuse.

Report abuse
hal-imaxabdi/README.md

๐Ÿ‘‹ Hi, I'm Halima

Cybersecurity Student | SOC & Blue Team Specialist

Portfolio

About Me

I build practical security projects focused on threat detection, incident response, and SIEM operations. Every project demonstrates real Blue Team skills used in Security Operations Centers.

Featured Projects

๐Ÿ›ก๏ธ SOC Homelab

Real-world SIEM setup with threat detection. Built hybrid lab (Windows + Kali), configured Elastic Cloud SIEM, developed custom detection rules that caught actual attacks. View Project

โ˜• Coffee-Demo-shop

Brute force attack simulator showing vulnerable vs. secure application design. Demonstrates real-world defenses: BCrypt, JWT, rate limiting, CSRF protection. View Project

๐Ÿ’ผ SEMIS

Full-stack HR system with enterprise security. Implements all 10 OWASP Top 10 mitigations including MFA, encryption at rest, RBAC, and audit logging. View Project

๐Ÿ”ฅ WAF HomeLab

Web Application Firewall lab demonstrating real attack detection and blocking. Set up SafeLine WAF to block SQL Injection, XSS, and Command Injection attacks in real-time with rate limiting and IP blocking. View Project

๐Ÿ” Mini SIEM (In Development)

Building a custom SIEM from scratch to understand how SIEMs work under the hood. Log collection, normalization, detection engine, and dashboard. View Project

Core Skills

  • SIEM Setup & Operations (Elastic Stack)
  • Web Application Firewall (WAF) Configuration
  • Custom Detection Rule Development
  • Log Analysis & Forensics
  • Application Security (OWASP Top 10)
  • Incident Response
  • Python, JavaScript, C++

Tech Stack

Security Tools: Wireshark, Nmap, Burp Suite, Elastic Stack, Sysmon, Auditd, SafeLine WAF
Languages: Python, JavaScript, C++
Frameworks: Flask, Node.js/Express, React
Databases: MongoDB, SQLite

Pinned Loading

  1. Coffee-Demo-shop Coffee-Demo-shop Public

    Brute-force attack simulator built on a Flask coffee shop app โ€” comparing a vulnerable login system vs. a hardened implementation with BCrypt, JWT, rate limiting, and CSRF protection. Educational pโ€ฆ

    Python

  2. SEMIS-Secure-Employee-Management-Information-System SEMIS-Secure-Employee-Management-Information-System Public

    A security-first web-based HR management system built for NexCore Technologies {a fictional company}. Features MFA (email OTP), AES-256 encryption, RBAC, JWT auth, and full OWASP Top 10 compliance.โ€ฆ

    JavaScript

  3. Soc-Homelab Soc-Homelab Public

    Hybrid SOC homelab with Windows and Kali VMs shipping logs to Elastic Cloud SIEM

  4. WAF-HomeLab-SafeLine WAF-HomeLab-SafeLine Public

    Web Application Firewall Home Lab using SafeLine WAF