Kazim Ali

SOC Analyst

Computer Science undergraduate with hands-on offensive & defensive cybersecurity experience. Skilled in network reconnaissance, intrusion detection, incident response, and endpoint security through an intensive Purple Team Bootcamp.

0 Lectures & Reports
0+ Tools Mastered
0 Technical Projects
Explore Projects View Lectures
kazim@kali:~
$
Scroll to explore
01
Technical Arsenal

Skills & Tools

Network Security

Nmap Wireshark Zeek RITA tcpdump

Intrusion Detection

Suricata IDS Sysmon Event ID fast.log

Offensive Tools

Netcat Socat PowerShell Rev Shells

Incident Response

Velociraptor KAPE Volatility FTK Imager

Threat Analysis

C2 Beaconing DNS Tunneling MITRE ATT&CK Splunk (SIEM)

OS & Infra

Linux (Kali) Windows Server VMware ESXi Active Directory
02
Purple Team Bootcamp

Cybersecurity Projects

01

Velociraptor Hunting & VQL Analysis

Digital Forensics

Deployed Velociraptor for endpoint monitoring. Used VQL to hunt persistent mechanisms like Shellbags and unauthorized actions.

02

Incident Response & Root Cause Analysis

DFIR

Conducted full IR lifecycle for a phishing compromise. Performed RCA identifying MFA and DMARC gaps.

03

Purple Team Network Reconnaissance

Offensive

Executed structured network reconnaissance. Correlated offensive scan traffic with Suricata IDS alerts.

04

AD Defense & Mimikatz Research

AD Security

Simulated credential harvesting. Researched LSASS protection and hardened Windows Server environments via GPOs.

05

C2 & DNS Tunneling Detection

Threat Hunt

Analyzed PCAP files using Zeek and RITA to identify stealthy C2 beaconing and sophisticated DNS tunneling.

06

Endpoint Security Engineering

Detection Eng

Engineered high-fidelity detection rules via custom Sysmon XML logic mapped to PowerShell and remote thread injection.

07

Post-System Compromise Forensics

Forensics

Identified persistence mechanisms (rogue tasks, Run keys). Applied forensic methods to reconstruct attacker timelines.

08

Advanced Pivoting & Shell Engineering

Offensive

Demonstrated network pivoting using Socat. Engineered encrypted reverse shells to bypass segmented boundaries.

09

SIEM Architecture & Splunk Data

SIEM

Architected central Splunk logging. Configured Universal Forwarders for IDS, network flow, and endpoint logs.

View All 39 Lectures & Reports
03
Career Journey

Technical Experience

2025 – 2026

Purple Team Bootcamp Participant

Intensive Hands-on Security Training

Executed 35+ technical projects and labs covering end-to-end Purple Team operations (Threat Emulation & Incident Detection). Mastered tools including Velociraptor, Splunk, Suricata, and Zeek.

2022 – 2026

Customer Service & Technical Assistant

Printing & Copy Center — Karbala, Iraq

Provided technical support by diagnosing system and hardware issues. Maintained detailed ticket documentation for recurring workflow problems, directly supporting SOC-like ticket management skills.

04
Education

Academic Background

Expected 2027

B.Sc. — Computer Science

University of Karbala — Iraq

Focus: Cybersecurity, Networking, Operating Systems

Graduated

High School Diploma

Al-Dhura High School for Distinguished Students — Iraq

05
Let's Connect

Get In Touch

I'm actively seeking a professional position where I can apply my technical skills in SOC operations and Purple Teaming. Feel free to reach out for collaborations or opportunities.

Send Message WhatsApp Me
Location Karbala, Iraq

Interactive Credentials Console

Purple Team Bootcamp

Hands-on Security Operations

2025 – 2026 Verified

Bootcamp Core Modules

  • Threat Emulation (MITRE ATT&CK)
  • Intrusion Detection & Sysmon
  • Zeek & RITA Traffic Forensics
  • Velociraptor Hunting & VQL
  • Splunk SIEM Orchestration
Supervisors: Anmar Mohammed | M. Baqer Hassan

Security Self-Study

Independent Threat Research

Continuous Active

Research Domains

  • OSINT & Reconnaissance
  • Web App Security (OWASP Top 10)
  • Virtualization & Server Hardening
  • Threat Modeling & Awareness
  • Front-end Web Technologies

Languages

Arabic Native Speaker
English Native
SYSTEM STATUS: ACTIVE MONITORING