Skip to content
View kyhomelab's full-sized avatar
🌟
🌟

Block or report kyhomelab

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
kyhomelab/README.md

Hi, I'm Kyle! πŸ‘‹

I'm a cybersecurity analyst and programmer with a passion for building secure and efficient systems. I thrive on hands-on projects, from developing automation scripts to constructing entire security operations center (SOC) labs. My recent work focuses on advanced threat detection, malware analysis automation, and production-ready security monitoring solutions using cloud and on-premises infrastructure.

This GitHub profile serves as a portfolio of my journey, documenting the labs I've built, the scripts I've written, and the real-world security operations capabilities I've developed along the way.


πŸš€ My Skills & Technologies

Python PowerShell Docker Proxmox Azure ELK Stack Wazuh Suricata TheHive MISP OPNsense pfSense Sysmon Kali Linux


πŸ› οΈ Featured Cybersecurity Projects

Project Description
Malware Analysis Pipeline Automated malware analysis pipeline using CAPEv2 sandbox on Proxmox. Analyzed 25 real-world malware samples with n8n automation and GitHub Gist reporting for comprehensive threat intelligence.
Azure Sentinel Honeypot Cloud-based honeypot deployment with automated threat intelligence pipeline using Azure Sentinel, KQL queries, and n8n SOAR orchestration for real-time threat detection and response.
Unified SOC Lab Fully containerized SOC environment integrating 15+ open-source security tools for comprehensive threat detection, incident response, and security automation in a production-like setting.
KQL Queries Repository Production-ready KQL queries for Microsoft Sentinel, M365 Defender, and Azure Log Analytics. Covers threat hunting, incident response, and advanced security monitoring for SOC operations.

πŸ”₯ Currently Working On

🦠 Automated malware analysis and threat intelligence reporting
☁️ Cloud-based security monitoring with Azure Sentinel and KQL
πŸ€– SOAR automation with n8n for incident response workflows
πŸ” Advanced threat hunting queries and detection engineering


πŸ† Certifications

Azure Administrator Associate CompTIA Security+ CompTIA A+ Google IT Support


πŸ“ Latest Blog Posts

πŸ“‘ Network Segmentation with OPNsense - Learn how to properly segment your homelab network for security and performance

πŸ” Building a SOC Lab - Step-by-step guide to building your own Security Operations Center lab environment

🏠 What's in My HomeLab - A detailed look at my homelab infrastructure, hardware, and architecture


πŸ“Š My GitHub Stats

GitHub Metrics

πŸ“« Get In Touch

LinkedIn GitHub Portfolio

Popular repositories Loading

  1. azure-sentinel-honeypot azure-sentinel-honeypot Public

    Azure honeypot with automated threat intelligence pipeline using Sentinel, KQL, and n8n SOAR

    Bicep 2

  2. kyhomelab kyhomelab Public

    1

  3. kql-queries kql-queries Public

    Production-ready KQL queries for Microsoft Sentinel, M365 Defender, and Azure Log Analytics. Threat hunting, incident response, and security monitoring queries for SOC operations.

    Python 1

  4. malware-analysis-pipeline malware-analysis-pipeline Public

    Automated malware analysis pipeline using CAPEv2 sandbox on Proxmox. Analyzed 25 real-world malware samples with n8n automation and GitHub Gist reporting.

    Python 1

  5. HomeLab HomeLab Public

    This is documentation of the personal homelab setup I have, as well as the VMs and Containers i'm running.

  6. SOC-Lab SOC-Lab Public

    Comprehensive documentation for setting up a Security Operations Center (SOC) lab.