Skip to content
View Hitansh1601's full-sized avatar
6 followers · 15 following

Highlights

  • Pro

Block or report Hitansh1601

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Hitansh1601/README.md

Hitansh Waghela — Cybersecurity Engineer (Blue Team / SOC)

🔐 Final-year Computer Engineering student @ RGIT Mumbai University
🎯 Targeting: SOC Analyst | Blue Team | Cloud Security Internship
🏆 1st Place — Hacktify 24-Hour Solo CTF
📍 Mumbai, India

🛡️ Core Competencies

SIEM & Monitoring: Wazuh, Splunk (SPL), AWS CloudWatch
Cloud Security: AWS GuardDuty, CloudTrail, VPC Flow Logs, EventBridge, IAM, SNS, Lambda
Threat Intelligence: MITRE ATT&CK, OSINT (WHOIS, DNS, Shodan, crt.sh), Neo4j Graph Analysis
Forensics & CTF: Network forensics, steganography, cryptography, reverse engineering
Tools: Nmap, Wireshark, Burp Suite, OpenVAS, Nessus, Wazuh
Languages: Python, Bash

🚀 Featured Projects

🔍 OSINT Entity Mapper

Python tool that aggregates threat intelligence from WHOIS, DNS, crt.sh, Shodan, and GitHub APIs — stores and visualizes relationships in Neo4j AuraDB graph database.
Python Neo4j Shodan API OSINT Graph Analysis

☁️ AWS Cloud Threat Detection & Automated Response

Simulated cloud attack scenarios (EC2, S3, IAM misconfigurations) with full detection pipeline: GuardDuty → CloudTrail → EventBridge → Lambda SOAR remediation.
AWS GuardDuty CloudTrail Lambda SOAR IAM

🖥️ Windows Security Monitoring Lab

Wazuh SIEM deployment on VMware: Sysmon, PowerShell, Windows Defender, FIM, registry monitoring — attacked from Kali Linux, detected and alerted.
Wazuh Sysmon SIEM VMware Blue Team

🏅 Achievements & Certs

  • 🥇 1st Place — Hacktify 24-Hour Solo CTF
  • 📜 Google Cloud Cybersecurity Certificate
  • 📜 Neo4j GraphAcademy Certified
  • 📜 Cisco NetAcad
  • 🔬 Active on TryHackMe: tryhackme.com/p/hitansh1601

📫 Connect

LinkedIn TryHackMe Email

Pinned Loading

  1. osint-entity-mapper osint-entity-mapper Public

    Automated OSINT tool that aggregates domain intelligence from 5 public sources and models entity relationships in Neo4j

    Python 1 1

  2. Windows-Security-Monitoring-Lab Windows-Security-Monitoring-Lab Public

    Blue Team home lab: Wazuh SIEM + Sysmon on VMware | Kali Linux attack simulation | Custom detection rules | MITRE ATT&CK mapping

    1

  3. AWS-cloud-threat-detection-auto-response AWS-cloud-threat-detection-auto-response Public

    Cloud-native SOAR pipeline: GuardDuty + EventBridge + Lambda auto-remediation | IAM misconfiguration + S3 exfiltration detection | 10 AWS services | MTTR < 30s

    Python 1

  4. cmms cmms Public

    Forked from 404Piyush/cmms

    🎓 Classroom Management and Monitoring System - A comprehensive real-time classroom management solution with backend API and Java desktop client

    Java 1

  5. Mini-SIEM-Threat-Detection-System Mini-SIEM-Threat-Detection-System Public

    HTML

  6. Hitansh1601 Hitansh1601 Public

    JavaScript