Skip to content
View qexa's full-sized avatar
2 followers · 0 following

Block or report qexa

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
qexa/README.md

🚨 AI Security & Governance

AI Security Governance Framework

https://github.com/qexa/AI-Security-Governance-Framework

An enterprise-grade, Security-as-Code framework for securing RAG-based AI systems end to end.
This project demonstrates how to operationalize AI security using threat modeling, CI/CD enforcement, adversarial testing, and runtime guardrails with an evidence-first approach aligned to NIST AI RMF and OWASP LLM risks.

Focus areas:
• AI threat modeling (STRIDE for RAG & agents)
• CI/CD policy gates and drift detection
• Adversarial testing and red-teaming
• Runtime hallucination and PII guardrails
• Audit-ready evidence generation

🌐 Connect with Me

Website LinkedIn Twitter YouTube

🔍 Threat Hunting Labs

🌐 Network & Browser Security

☁️ Cloud Security & Offensive Labs

💻 Cryptomining & Resource Abuse

📊 GitHub Stats

Profile Views
Top Langs

🤝 Let’s Collaborate

I’m always open to collaborating on AI security, threat hunting, automation, and platform engineering projects that solve real-world problems.

Reach out via LinkedIn or explore the repositories above.

Innovation and resilience are built one experiment at a time.

Pinned Loading

  1. Bitcoin-Mining-Threat-Hunt Bitcoin-Mining-Threat-Hunt Public

    Hands-on lab for simulating and detecting unauthorized cryptomining (e.g., Bitcoin/Monero miners) in Microsoft Defender XDR. Includes safe attacker simulation scripts, KQL detections, watchlists, a…

    PowerShell 1

  2. Tenable.io-scan Tenable.io-scan Public

    Tenable Showcase Lab is a Python project that simulates vulnerability management concepts with sample data. It demonstrates real-time plugin freshness (Live Results), exposure scoring similar to Lu…

    Makefile

  3. azure-kali-offensive azure-kali-offensive Public

    Kali on Azure via Terraform + cloud-init, with isolated Docker targets for ethical testing under strict ROE, least-privilege NSG, and one-command teardown.

    HCL

  4. Threat-Hunting-Scenario-Tor-Browser-Detection Threat-Hunting-Scenario-Tor-Browser-Detection Public

    🎯 Comprehensive threat hunting scenario for detecting Tor browser usage in enterprise environments. Includes KQL queries, investigation methodology, timeline analysis, and remediation steps using M…

  5. azure-tpot-honeypot azure-tpot-honeypot Public

    Automation for T-Pot honeypot platform on Azure VMs. Complete deployment guide and automation scripts for running T-Pot honeypot platform on Azure Virtual Machines with comprehensive security monit…

    Shell

  6. usb-exfiltration-threat-hunt usb-exfiltration-threat-hunt Public

    USB Exfiltration Threat Hunting Scenario, simulating insider data theft with a removable drive. It includes a scenario creation document, pre-filled hunt report, reusable templates, KQL queries, an…

    PowerShell