Skip to content
View kvatnynito's full-sized avatar

Block or report kvatnynito

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
kvatnynito/README.md

Hi, I’m Kevin — IT Maintainer for networks and security.

I’m someone who learns by building and maintaining. I built a segmented homelab and a Windows telemetry pipeline, then used that data to practice incident investigations—writing case files with timelines, artifacts/IOCs, and repeatable searches/queries across Splunk, Elastic/Kibana, and Wazuh (See Portfolio 1). I’m strongest in alert triage, log analysis, and communicating technical findings clearly.

Featured Security Projects — Overview

I built a hands-on Blue Team portfolio by designing a segmented lab environment, centralizing endpoint telemetry, and documenting incident-style investigations using real logs. This portfolio followed a progression:

  1. Lab foundation (segmentation and inventory)
  2. Telemetry pipeline (centralized Windows logging and validation)
  3. Incident-style case files (timelines, artifacts/IOCs, and investigative pivots)

Sanitization note: Public documentation uses representative hostnames/IP ranges and redacts WAN/public IPs, external domains/DDNS, credentials, tokens, and other sensitive identifiers.

Portfolio 1 (P1) — Lab Infrastructure, Telemetry, and Investigation Case Files

Portfolio Hub: https://github.com/kvatnynito/Cybersecurity-Portfolio1

flowchart LR
  A["P1-1: Lab Foundation<br/>Proxmox + pfSense Segmentation<br/>Inventory + Sanitization"] --> 
  B["P1-2: Telemetry Pipeline<br/>WEF + Sysmon<br/>Validate in Splunk / Elastic / Wazuh"] --> 
  C["P1-3: Case Files<br/>Timelines + IOCs + Pivots<br/>Detection artifacts"]

  C --> D["Detections Artifacts<br/>Splunk = Searches - SPL<br/>Elastic = Queries - KQL<br/>Wazuh = Notes"]
Loading

Featured Repositories

Pinned Loading

  1. Cybersecurity-Portfolio1 Cybersecurity-Portfolio1 Public

    My cybersecurity portfolio 1: segmented homelab, telemetry pipeline, and incident case files.

  2. Cybersecurity-Portfolio2 Cybersecurity-Portfolio2 Public

    Planned AWS Cloud Security & Engineering portfolio focused on AWS account security, IAM, networking, logging, monitoring, S3 security, EC2 hardening, vulnerability management, automation, and Infra…

  3. Cybersecurity-Portfolio3-AI-Security Cybersecurity-Portfolio3-AI-Security Public

    Portfolio 3 focused on AI security, including AI application threat modeling, prompt injection risks, secure RAG design, and AI security assessment projects.