// student_work
PROOF —
NOT PROMISES.
Most IT programs say students learn things. CITE shows the work: capstones, packet captures, hardening baselines, and dashboards built on real systems.
Live SOC Tabletop · Multi-stage Intrusion
Cohort defended against a multi-stage intrusion in the SOC lab — phishing → credential theft → lateral movement.
A 4-hour tabletop where blue-team students worked alerts as they fired, opened tickets, and walked the chain of custody for evidence. Wrote the post-incident report against NIST 800-61.
- Splunk
- Velociraptor
- MITRE ATT&CK
- NIST 800-61
[ 14:08:21 ] alert.id=A-2391 severity=HIGH src.user=jdoe@cite.local src.ip=10.42.7.18 indicator=lsass.dump.candidate detection=defender_ASR action=quarantined next=isolate_host └─ assigned to analyst.shift.B
Network Projects
1 PROJECT- CiscoNetwork Design
Campus VLAN Redesign
Network capstone — redesigned a 12-VLAN campus topology with proper segmentation between staff, lab, IoT, and guest.
↗ See the work
Security Labs
1 PROJECT- PCAPWireshark
PCAP Hunt · Detect a C2 Beacon
Wireshark deep-dive — identified a beaconing C2 channel hidden in DNS traffic and wrote detection rules.
↗ See the work
Linux / Systems
1 PROJECT- LinuxHardening
Linux Hardening Baseline
Authored a CIS-aligned hardening baseline for a public-facing Ubuntu server and validated with Lynis.
↗ See the work
Dashboards
1 PROJECT- GrafanaObservability
SOC Dashboard · Grafana + Loki
Capstone dashboard surfacing auth failures, geo-anomalies, and beaconing across the lab estate.
↗ See the work
Capstones
1 PROJECT- Zero TrustEntra ID
Capstone · Zero-Trust Lab
End-to-end zero-trust implementation in the virtualization lab — identity, device posture, segmentation.
↗ See the work