Nguyen Sy Cuong
~/roles/4n6-enthusiast
Welcome to my page
I am an aspiring SOC Analyst transitioning from a disciplined professional background into the SOC&DFIR domain. I focus on understanding the "how" and "why" behind security events, combining an analytical mindset with a passion for continuous technical growth.
Technical Capabilities
| DOMAIN | SKILLS & KEY TOOLS |
|---|---|
| SOC & SIEM | Alert Triage and Phishing Email Analysis. Proficient in event correlation and log analysis using SIEM (Splunk, ELK) to hunt threats across Windows Event Logs and Sysmon. |
| Digital Forensics | Endpoint & Disk Forensics (KAPE, FTK Imager, Eric Zimmerman's Tools), Memory Forensics (Volatility 2 & 3), Network Traffic Analysis (Wireshark, Zui, NetworkMiner). |
| Threat Hunting & Detection | Hypothesis-driven Hunting and MITRE ATT&CK framework mapping. Practical Detection Engineering (authoring Sigma rules, YARA rules, and Splunk SPL correlation queries). |
| Malware Triage | Basic Static & Dynamic Analysis within isolated environments (FlareVM, Sysinternals, Didier Stevens suite) for IOC and IOA extraction. |
| OS & Scripting | Basic understanding of Windows Internals. Capable of using Python, CLI utilities, and Regex for log parsing and task automation. |
Certifications
- ◆CompTIA Security+: Jan 2026
- ◆Certified CyberDefenders Level 2: May 2026