// student_work

PROOF —
NOT PROMISES.

Most IT programs say students learn things. CITE shows the work: capstones, packet captures, hardening baselines, and dashboards built on real systems.

[ FEATURED · Security Labs ]

Live SOC Tabletop · Multi-stage Intrusion

Cohort defended against a multi-stage intrusion in the SOC lab — phishing → credential theft → lateral movement.

A 4-hour tabletop where blue-team students worked alerts as they fired, opened tickets, and walked the chain of custody for evidence. Wrote the post-incident report against NIST 800-61.

  • Splunk
  • Velociraptor
  • MITRE ATT&CK
  • NIST 800-61
$ terminalalert · stage_2_credential_theft
[ 14:08:21 ] alert.id=A-2391  severity=HIGH
src.user=jdoe@cite.local  src.ip=10.42.7.18
indicator=lsass.dump.candidate  detection=defender_ASR
action=quarantined  next=isolate_host
└─ assigned to analyst.shift.B

Network Projects

1 PROJECT
  • CiscoNetwork Design

    Campus VLAN Redesign

    Network capstone — redesigned a 12-VLAN campus topology with proper segmentation between staff, lab, IoT, and guest.

    ↗ See the work

Security Labs

1 PROJECT
  • PCAPWireshark

    PCAP Hunt · Detect a C2 Beacon

    Wireshark deep-dive — identified a beaconing C2 channel hidden in DNS traffic and wrote detection rules.

    ↗ See the work

Linux / Systems

1 PROJECT
  • LinuxHardening

    Linux Hardening Baseline

    Authored a CIS-aligned hardening baseline for a public-facing Ubuntu server and validated with Lynis.

    ↗ See the work

Dashboards

1 PROJECT
  • GrafanaObservability

    SOC Dashboard · Grafana + Loki

    Capstone dashboard surfacing auth failures, geo-anomalies, and beaconing across the lab estate.

    ↗ See the work

Capstones

1 PROJECT
  • Zero TrustEntra ID

    Capstone · Zero-Trust Lab

    End-to-end zero-trust implementation in the virtualization lab — identity, device posture, segmentation.

    ↗ See the work