All Projects
SOC & SIEMCase Study

Home SOC Stack & Security Monitoring Lab

A hands-on home SOC lab designed to simulate attacks, collect telemetry, monitor alerts, enrich findings, and practice defensive investigation workflows.

Problem

Security monitoring skills are difficult to build without a realistic lab that generates endpoint, network, firewall, and attack simulation data.

Approach

Built a layered home security lab with OPNsense for firewall visibility, VPN access for remote connectivity, Wazuh for SIEM monitoring, Shuffle for SOAR-assisted enrichment, TheHive for case management, Zabbix for infrastructure visibility, and Kali Linux for controlled attack simulation.

Outcome

Created a practical SOC training environment for alert validation, log analysis, incident triage, case documentation, and improving defensive monitoring workflows.