Skip to content
View heraclescap's full-sized avatar
🎫
🎫
4 followers · 6 following

Achievements

Achievement: Pull Shark

Achievements

Achievement: Pull Shark

Highlights

  • Pro

Block or report heraclescap

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
heraclescap/README.md

Hey, I'm heraclescap πŸ‘‹

SOC Analyst & Perpetual Learner

I work on Security Operations, building detection pipelines and investigating threats across network, endpoint, and intelligence layers. I train on CyberDefenders and BTLO to develop investigation and forensics skills, and on HackTheBox and Root-Me to stay sharp on the offensive side. Currently preparing for CompTIA Security+, with BTL1 as the next target.

Skills

Skill Associated Project
SIEM and Detection Rule Engineering sigwaz-cli / sigwaz.com / wazuh-custom-dashboards
Security Automation and SOAR Orchestration shuffle-soc-automation
Threat Intelligence Operations shuffle-soc-automation
Incident Case Management shuffle-soc-automation
Network Forensics and Intrusion Analysis CyberDefenders / BTLO
Memory and Disk Forensics CyberDefenders / BTLO
Offensive Techniques and CTF Problem Solving HackTheBox / Root-Me

Tools

SIEM

SOAR & Case Management

Detection Engineering & Threat Hunting

Threat Intelligence

Network Analysis

Digital Forensic

Scripting

DevOps

Certifications

Projects

  • sigwaz-cli β€” A high-precision Sigma-to-Wazuh rule converter built as a robust CLI tool for automated multi-rule batch processing.
  • sigwaz.com β€” The live web-based version of the SigWaz converter, providing a clean, minimalist React interface for instant in-browser rule translation.
  • shuffle-soc-automation β€” End-to-end SOC pipeline: Wazuh alert ingestion, multi-source observable enrichment, automated DFIR-IRIS ticketing.
  • wazuh-custom-dashboards β€” Custom Wazuh dashboards for SOC monitoring and detection coverage analysis.

Pinned Loading

  1. sigwaz-cli sigwaz-cli Public

    Convert Sigma detection rules to production-ready Wazuh XML. CLI tool with batch processing, ZIP input, field mapping, and config file support.

    Python 3

  2. shuffle-soc-automation shuffle-soc-automation Public

    SOC automation workflows built with the SOAR Shuffle that coordinates actions between Wazuh, DFIR-IRIS, OpenCTI and Cortex.

    1

  3. wazuh-custom-dashboards wazuh-custom-dashboards Public

    Custom Wazuh dashboards for alert monitoring, software hygiene and vulnerability panorama.

    1 1

  4. comptia-secplus-sy0-701-notes comptia-secplus-sy0-701-notes Public

    Personal study notes for CompTIA Security+ SY0-701

    1

  5. blueteam-writeups blueteam-writeups Public

    Writeups Blue Team de mes challenges CyberDefenders, BTLO et HackTheBox sherlocks.

    1