I’m a cybersecurity professional focused on detection engineering, threat hunting, and breaking things to understand how they work. I work at an MSSP as a Sentinel Detection Specialist, where I design high-fidelity analytical rules, fine-tune detections to improve signal quality, and enhance threat coverage while reducing alert fatigue across Microsoft Sentinel and Defender XDR. I also support incident investigations across the Microsoft security stack.
I started this blog to document my work, research, and thought process, sharing practical breakdowns of detection logic, real-world insights from engineering projects, and lessons learned through experiments and edge cases. This is a personal space where I explore ideas, challenge assumptions, and try to bring clarity to complex problems.
Hope you find something useful here.