System Status: All systems green. Monitoring active.

Securing the Edge.
Protecting the Core.

Hi, I'm DrkingBD. I'm a cybersecurity professional who specializes in building highly resilient edge architectures and actively hunting down threats before they become a problem. I believe in zero-trust environments that are robust, resilient, and ready for whatever comes next.

drking@soc-terminal

drking@soc:~$ ./start_defense_matrix.sh

[+] Initializing global packet capture...

[+] Loading dynamic YARA rulesets...

Watching traffic patterns in real-time...

⚠️ [WARN] Anomalous TLS handshake on port 443.

Source: 10.0.5.22 (internal-vlan)

Dest: 185.15.22.x (Known C2 Node)

⚡ [ACTION] Triaging via automated SOAR pipeline...

✓ [SECURE] Threat neutralized. Edge firewall rules updated.

drking@soc:~$

What I Do Best

>> cat /home/drkingbd/capabilities.txt

Defending the Fort
(Blue Team)

  • Building and tuning SIEMs (Splunk, ELK) to cut through the noise.
  • Rolling out comprehensive EDR/XDR solutions.
  • Deep-dive Network Traffic Analysis (Zeek, Wireshark).
  • Automating incident response so the team can sleep.

Building in the Cloud
(Edge & ZTNA)

  • Writing ultra-low latency security rules using Cloudflare Workers.
  • Ditching VPNs for true Zero-Trust Network Access (ZTNA).
  • Auditing AWS IAM and untangling messy Security Groups.
  • Securing containerized workloads (Docker, Kubernetes).

Understanding the Threat
(Intel & Analysis)

  • Tearing apart malware (Reverse Engineering) to see how it ticks.
  • Mapping adversary behaviors to the MITRE ATT&CK Framework.
  • Crafting precise YARA rules to catch the bad guys.
  • Leveraging OSINT to stay ahead of emerging campaigns.
Verified Badges: CompTIA CySA+ Splunk Core Power User AWS Certified Security

My Sandbox & Solutions

>> ls -la /var/projects/

Enterprise SIEM Lab

I needed a reliable way to spot anomalous behavior in complex networks, so I built a self-hosted SIEM from scratch. Using Splunk and Sysmon, I wrote custom queries to actively hunt down Pass-the-Hash and Kerberoasting attempts.

Splunk Sysmon Active Directory

Serverless Auto-Triage

Cold starts in incident response pipelines drive me crazy. To fix this, I developed an edge-first pipeline using Cloudflare Workers. It ingests reported emails and verifies URLs in milliseconds, keeping the entire footprint under 128MB of RAM.

TypeScript Cloudflare Workers SOAR

Malware Detonation Sandbox

To truly understand how modern malware behaves, I engineered an isolated virtualization cluster. Using Cuckoo Sandbox, I safely detonate polymorphic samples and use Volatility to pull apart memory dumps and map out C2 beaconing.

Cuckoo Sandbox Volatility Malware Analysis

Zero-Trust Network Redesign

Traditional VPNs leave too much room for lateral movement. I led the transition of a legacy perimeter to a strict Zero-Trust model, implementing identity-based, per-request authentication using strict RBAC policies.

ZTNA IAM Cloudflare Access

Let's Secure Your Next Project

Whether you need an architectural review, want to collaborate on threat hunting, or just want to talk security, I'm an encrypted message away.

4A9B 2C81 F53E 90D7 11A2 B4C6 D8E9 F0A1 B2C3 D4E5