Skip to content
View Adam-KD's full-sized avatar

Block or report Adam-KD

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Adam-KD/README.md

Adam Kadmany

Cybersecurity Analyst - SOC Operations & Threat Detection
Majdal Shams, Golan Heights, Israel

About

Cybersecurity analyst focused on SOC operations, threat detection, and hands-on attack simulation. I build controlled lab environments, execute real attack scenarios end-to-end, document findings, and publish everything.

CompTIA Security+ certified. ICS College SOC graduate. TryHackMe Top 2% globally. Pursuing CCNA.

Multilingual: Arabic (native), English (C1), Hebrew (working proficiency), German (A1).

Featured Projects

SOC Simulations Home Lab

A segmented multi-VM SOC lab (Kali, Ubuntu gateway, two Windows endpoints) with Wazuh SIEM, Sysmon telemetry, and centralized traffic routing; simulating real SOC network architecture. Each simulation includes full Wireshark packet analysis, Wazuh alert correlation, MITRE ATT&CK mapping, and structured investigation reports.

Simulation Category Key Finding
Network Reconnaissance via Nmap Reconnaissance Wazuh and Sysmon have zero visibility into network-level scanning - IDS required
RDP Brute Force Attack & Detection Credential Access Detection is speed-dependent; NLA bypassed via NTLM fallback; full kill chain captured
Privilege Escalation via Always Install Elevated Privilege Escalation Standard user escalated to SYSTEM via GPO misconfiguration; default Wazuh config blind to the entire attack - Sysmon ingestion and FIM tuning required for detection

SQL Security Investigations

Simulated attack scenario investigations using SQLite. Covers brute force authentication attacks and DNS-based data exfiltration. Each investigation includes threat intel enrichment via multi-table JOINs, beaconing detection using window functions (LAG), and a full findings report with IOCs, timeline, and recommendations.

IOC Extractor - Python

CLI tool that parses threat reports and extracts IPs, domains, file hashes (MD5/SHA1/SHA256), emails, and CVE IDs via regex. Handles defanged IOCs automatically. Enriches indicators via AbuseIPDB, VirusTotal, and NVD. Outputs to terminal, JSON, CSV, or SQLite for persistent cross-report querying.

Ghostwave (In Development)

Open-source handheld RF signal recorder and replayer built on ESP32 + CC1101. Captures, stores, and replays 433MHz signals with a built-in display interface.

Skills

SIEM (Wazuh · Splunk · Sentinel) Threat Detection & Triage Log Analysis MITRE ATT&CK Network Traffic Analysis Protocol Analysis (RDP · SMB · TLS) Wireshark Burp Suite Python SQL Bash PowerShell

Certifications

  • CompTIA Security+ — April 2026
  • SOC Analyst & Web Application Security — ICS College, 2025–2026
  • TryHackMe SOC Level 1 — Top 2% globally · 100+ labs · March 2026
  • CCNA — Cisco, In Progress

Connect

LinkedIn TryHackMe Email

Pinned Loading

  1. soc-simulations soc-simulations Public

    Attack simulations with full SIEM analysis, Wireshark packet captures, and structured investigation reports - Nmap recon, RDP brute force, and more.

  2. sql-soc sql-soc Public

    Learning SQL through SOC analysis - Notes, exercises, and a publishable log investigation script.

  3. ghostwave ghostwave Public

    Open-source handheld RF signal recorder and replayer built on ESP32 + CC1101. Capture, store, and replay 433MHz signals with a built-in display interface.

  4. ioc-extractor ioc-extractor Public

    Python CLI tool that extracts and enriches indicators of compromise (IOCs) from threat reports - IPs, domains, hashes, emails, CVEs. Supports AbuseIPDB, VirusTotal, and NVD enrichment. Outputs to t…

    Python