Skip to content
View sohankanna's full-sized avatar
3 followers · 2 following

Block or report sohankanna

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
sohankanna/README.md

Hi there, I'm Sohan Kanna πŸ‘‹

A CSE Student passionate about Offensive Security and Defensive Operations.

As a Computer Science student, I'm fascinated by the constant duel between system exploitation and protection. This curiosity drives my hands-on work, from building defensive SIEM labs to analyzing attacker tools and deconstructing threats in CTFs. I leverage my understanding of how systems are built to better understand how they break. I am actively seeking roles in SOC analysis or penetration testing where I can apply my analytical skills to real-world security challenges.

  • πŸ”­ I’m currently analyzing new malware samples and documenting my findings on my Medium blog.
  • 🌱 I’m always active on platforms like TryHackMe and LetsDefend to sharpen my offensive and defensive skills.
  • πŸ’¬ Ask me about Malware Analysis, Reverse Engineering (Ghidra), SIEM architecture, or CTFs!
  • πŸ“« The best way to reach me is through LinkedIn.

πŸ›‘οΈ My Cybersecurity & Technical Skillset

πŸ‘¨β€πŸ’» Programming & Scripting Languages

πŸ›‘οΈ Cybersecurity Domains

- Malware Analysis & Reverse Engineering: Static/Dynamic Analysis, Deobfuscation, Disassemblers
- Security Operations (SecOps): SIEM/EDR, Log Analysis, Incident Response
- Application Security (AppSec): OWASP Top 10, Vulnerability Assessment
- Offensive Security: Phishing Simulations, Social Engineering

βš™οΈ Tools & Platforms

Ghidra

πŸ“œ Certifications

Google

This section contains all my certifications from Google.

Google Cybersecurity Professional Certificate

Google Cybersecurity Certificate

(ISC)Β²

(ISC)Β² Certified in Cybersecurity (CC)

(ISC)Β² CC Certificate



LetsDefend

This section contains my certificates of completion from the LetsDefend platform.

SOC Analyst Fundamentals

LetsDefend SOC Analyst Certificate

Malware Analysis

Another LetsDefend Certificate

Web Attack Detection and Analysis

Another LetsDefend Certificate

Programming For CyberSecurity

Another LetsDefend Certificate

Non Stop

image



Hunter - 2 Badge

image



Hunter Badge

image

TryHackMe

This section contains all my certifications from TryHackMe.

Jr Penetration Tester



CyberSecurity Fundamentals



Web Fundamentals



NPTEL (IIT Bombay)

Network Security

NPTEL Network Security Certificate

✍️ My Writing & Analysis

I regularly publish in-depth articles on malware analysis, reverse engineering, and decoding heavily obfuscated code. You can find my work on Medium.

πŸš€ My Projects & Hands-On Work

Automated SIEM & EDR Lab with Wazuh
Designed and built a fully functional Security Information and Event Management (SIEM) lab from the ground up. This project uses Wazuh to provide EDR capabilities, centralizing log collection and security monitoring for multiple endpoints to detect simulated attacks.
Technologies: Wazuh, Elastic Stack (ELK), VirtualBox, Linux, Python

Phishing Campaign Simulator
A Python-based tool developed to conduct controlled phishing simulations for security awareness training. The application sends customized email templates and hosts a tracking server to measure campaign effectiveness.
Technologies: Python, SMTP, Django, HTML/CSS

Security Challenges & SOC Alert Analysis Write-ups
All my detailed walkthroughs for TryHackMe labs, CTF Challenges and my analysis of real-world SOC alerts from the LetsDefend platform, documenting my approach to both offensive and defensive security challenges.
Domains: Digital Forensics, Incident Response (DFIR), Penetration Testing, Log Analysis

πŸ† CTF Competitions & Achievements

I am passionate about sharpening my skills through competitive cybersecurity. I actively participate in Capture The Flag (CTF) events with my team, Diamond_Dogs. I maintain a repository to document this journey:

  • πŸ† CTF Trophy Case: A logbook of all the events I've participated in, showcasing my rankings, scores, and certificates of participation.

πŸ“¬ Let's Connect

Pinned Loading

  1. SOC-Analyst-Portfolio SOC-Analyst-Portfolio Public

    A portfolio of hands-on security alert investigations from the LetsDefend platform. This project demonstrates my practical skills in SIEM monitoring, log analysis, and incident response in a simula…

  2. ctf-trophy-case ctf-trophy-case Public

    A documentation of all my participation in various CTF events

  3. Wazuh-SOC-Lab Wazuh-SOC-Lab Public

    A fully functional Security Operations Center (SOC) home lab using Wazuh for SIEM/XDR, featuring automated detection and response capabilities.

  4. npm-supply-chain-attack-analysis-2025 npm-supply-chain-attack-analysis-2025 Public

    A security analysis and breakdown of the malware from the September 2025 NPM supply chain attack that targeted chalk, debug, and 16 other packages.

    JavaScript