SOC Reference Lab

About This Site

This website is used as a reference portal for cybersecurity tools, SOC workflows, detection engineering notes, and lab testing resources.

Reference Topics

• Malware analysis tools and sandbox references
• SIEM detection rules and hunting queries
• Windows and Linux event log investigation
• Network traffic analysis tools
• Threat intelligence and IOC enrichment
• Incident response checklists

Sample SOC Workflow

A typical investigation may start with an alert from the SIEM, followed by endpoint log review, IOC enrichment, sandbox analysis, and documentation of findings for escalation or closure.

Disclaimer

This site is intended for internal reference, lab testing, and educational cybersecurity research only. Tools and techniques should be used only in authorized environments.