Skip to content
View sherifrahim's full-sized avatar
πŸ”
sudo rm -rf */
πŸ”
sudo rm -rf */
19 followers · 3 following

Achievements

Achievement: StarstruckAchievement: Pair ExtraordinaireAchievement: Pull Shark

Achievements

Achievement: StarstruckAchievement: Pair ExtraordinaireAchievement: Pull Shark

Organizations

@ProjectRadiant

Block or report sherifrahim

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
sherifrahim/README.md

πŸ’« About Me:

Security SOC Engineer and SIEM Admin with hands-on experience in detection engineering, threat hunting, and incident response across enterprise and government environments.

Currently working on Microsoft Sentinel, Defender XDR, and multi-cloud security integrations (Azure, Huawei Cloud, Cloudflare).

Built and deployed SOC environments from scratch, developed KQL-based detections, and optimized SIEM ingestion pipelines to reduce noise and cost.

Strong focus on improving alert quality, reducing false positives, and driving real-world incident response.

Background includes penetration testing and red team tooling, enabling a practical attacker-aware defensive approach.

πŸ“« Reach me on LinkedIn or Telegram

🌐 Socials:

LinkedIn Medium

πŸ’» Tech Stack:

SIEM & Detection

Microsoft Sentinel Splunk Wazuh ElasticSearch

Endpoint & Identity

Microsoft Defender Entra ID

Threat Hunting & Analysis

KQL Wireshark VirusTotal

Offensive Security & Testing

Nmap Burp Suite Metasploit

Systems & Scripting

Linux PowerShell Git

πŸ“Š GitHub Stats:

πŸ† GitHub Trophies

πŸ“œ Certifications

  • CompTIA Security+ (SY0-701)
  • SC-900: Microsoft Security, Compliance and Identity Fundamentals
  • Certified Penetration Tester (CPT)
  • AZ-500 (In Progress)

Pinned Loading

  1. Wazuh-SIEM-Defneder-Integrated Wazuh-SIEM-Defneder-Integrated Public

    Setting Up Wazuh SIEM/XDR Homelab and Integration of Microsoft Defender into it.

    2

  2. sherifrahim sherifrahim Public

    Just Me

  3. device_xiaomi_raphael device_xiaomi_raphael Public

    Device Tree for Xiaomi K20pro/ Mi 9T pro

    Shell 3 1

  4. kernel_xiaomi_raphael kernel_xiaomi_raphael Public

    C 1

  5. android_device_oneplus_sm8350-common android_device_oneplus_sm8350-common Public

    Forked from LineageOS/android_device_oneplus_sm8350-common

    Makefile