BQBabatunde Qodriinbabatundeqodri.hashnode.dev·Mar 3 · 17 min readBehavioral HTTP Threat Detection: Directory Enumeration (DirBuster-Style Reconnaissance)A behavioral detection that identifies automated web reconnaissance by correlating high-volume GET/HEAD requests across unique URIs, enriched with threat intelligence to reduce false positives. “I bui00
BQBabatunde Qodriinbabatundeqodri.hashnode.dev·Mar 3 · 21 min readWindows Endpoint Threat Detection & Persistence Analysis Using Sysmon and Splunk (MITRE T1547.001)This documentation presents a hands-on SOC investigation focused on detecting and validating Windows registry-based persistence using Sysmon and Splunk. The project demonstrates how common auto-start 00
BQBabatunde Qodriinbabatundeqodri.hashnode.dev·Mar 3 · 55 min readBehavioral HTTP Threat Detection: Dashboards, Alerts & Incident Response PlaybooksModern web-based cyber threats evolve rapidly, and Security Operations Centers (SOCs) cannot afford delays in identifying malicious activity within HTTP traffic. This project delivers a fully engineer00
BQBabatunde Qodriinbabatundeqodri.hashnode.dev·Nov 27, 2025 · 29 min readBehavioral DNS Threat Detection & Automated Incident Response (Splunk, Slack, Jira)In modern cybersecurity operations, DNS traffic is often an overlooked channel for data exfiltration, malware beaconing, and command-and-control communications and so on. In this project, i demonstrates a complete hands-on workflow for DNS threat de...00
BQBabatunde Qodriinbabatundeqodri.hashnode.dev·Nov 13, 2025 · 10 min readAutomated Brute-Force Login Detection & Email Alerting in Splunk (Ubuntu)I still can’t believe it myself — I built a Splunk-powered detection that spots and alerts brute-force login attempts on Windows hosts in under two minutes, boosting visibility and incident response efficiency by over 60%. Here’s how I made it happen...00
