Loading

Open to SOC & Network Security roles · Batna, Algeria

Mohammed Rida Lakhdari

Information Security engineering student, ranked 5th of 200, hands-on across the full SOC workflow — SIEM monitoring, alert triage, incident response, and PCAP forensics.

View Reports Download Resume Contact Me
Portrait of Mohammed Rida Lakhdari
Blue Team · SOC Analyst
Scroll

01 About

Information Security engineering student at the University of Batna 2 (B.Eng. Computer Science, Information Security specialization, expected 2027 — entering my final year). I work across the full blue-team lifecycle, from SIEM monitoring and alert triage to incident response and network forensics.

  • 5thRank of 200 students
  • 15+MITRE ATT&CK-mapped detection rules authored
  • CCNACisco-certified networking
  • 180hCEH / OSCP penetration-testing training

02 Skills

SOC & Monitoring

  • SIEM (Wazuh, Splunk)
  • Alert Triage & Escalation
  • Log Analysis & Correlation
  • Windows Event Logs
  • Syslog
  • Sysmon
  • FIM
  • Detection Rule Development

Threat Detection & IR

  • MITRE ATT&CK
  • Incident Response
  • Threat Hunting
  • False-Positive Triage
  • Digital Forensics
  • PCAP Analysis (Wireshark, Zeek, RITA)
  • IOC
  • Threat Intel
  • Playbook Dev

Network Security

  • TCP/IP
  • Firewalls & ACLs
  • VLAN Segmentation
  • Port Security
  • DHCP Snooping
  • Dynamic ARP Inspection
  • OSPF
  • STP
  • EtherChannel
  • IDS/IPS (Suricata)
  • VPN
  • NAC

Endpoint & Vuln Mgmt

  • EDR/HIDS (OSSEC)
  • Active Directory Security
  • Nessus
  • CVSS/CVE
  • Hardening

Offensive (supporting)

  • Kali Linux
  • Metasploit
  • Burp Suite
  • Nmap
  • OWASP Top 10
  • Privilege Escalation
  • AD Attacks

Scripting & Platforms

  • Python
  • Bash
  • JavaScript/TypeScript
  • GNS3
  • Packet Tracer
  • Git/GitHub
  • Linux
  • Windows Server 2019

03 Experience

  1. Cyber Security Intern (Remote)

    Apr 2026 – May 2026

    Arch Technologies

    Built a Python packet sniffer, a JPEG file-carver, a keylogger (awareness research), and a credit-card fraud-detection ML pipeline. Delivered 4 documented engineering projects in 8 weeks, all published to GitHub.

  2. Network Security Intern

    Mar 2026

    Algérie Telecom

    One-week immersion on the fiber-optic backbone: live network monitoring, config management, and incident handling. Proposed a workflow remediation using VLAN segmentation, ACLs, and port security.

  3. IT Support Specialist & Junior Developer

    Jun 2024 – Sep 2024

    Timgad Informatique

    Resolved 20+ incidents across Windows, Linux, and macOS, cutting average resolution time by 30% and hardening 15+ client systems.

04 Featured Projects

Selected hands-on labs and engineering work. Full technical write-ups live in the Reports library below.

Wazuh SIEM/XDR Detection Engineering

Purple Team Bootcamp build: 15+ ATT&CK-mapped detection rules, 85 Nessus findings triaged, exploited CVE-2011-2523.

  • Wazuh
  • MITRE ATT&CK
  • Nessus

Sysmon In-Memory Attack Detection

Detection logic on Sysmon Event IDs 1/8/10 — 100% coverage of T1059.001, T1003.001, and T1055.

  • Sysmon
  • Windows Event Logs
  • Detection

Active Directory Incident Response

Forensics & PCAP analysis over 1,400+ Suricata events; reconstructed a DCSync attack and IcedID infection.

  • Suricata
  • PCAP
  • Active Directory

C2 Beaconing Detection — Zeus Trojan

Network forensics with Zeek + RITA; beacon scored CRITICAL (0.97/1.00) with ~678 MB of exfiltration identified.

  • Zeek
  • RITA
  • C2 Analysis

Multi-Service Honeypot

SSH / HTTP / MySQL honeypot capturing and analyzing 100+ attacker interactions.

  • Honeypot
  • Threat Intel
  • Linux

05 Technical Reports

A library of detailed technical write-ups. Filter by category, search, then open any report to read its full structure and embedded PDF.

06 Certifications

  • Cisco CCNAv7: Switching, Routing & Wireless EssentialsSep 2025
  • Cisco CCNAv7: Introduction to NetworksJan 2025
  • Cisco Cyber Threat ManagementOct 2025
  • Intensive Pen Testing, CEH & OSCP Track (120 hrs) — Teaching PlanetAug 2024
  • Bug Bounty: Web Pen Testing Diploma — Teaching PlanetAug 2025
  • Optical Fibres, LAN & Surveillance Systems — CFBIFeb 2026

07 Education

B.Eng. Computer Science — Information Security Specialization

Expected 2027

University of Batna 2

Ranked 5th of 200, with semester averages of 14.04–17.76/20. Coursework includes Cryptography, Intrusion Detection Systems, Malware Analysis, OS Security, Secure Software Development, and Cloud Security.

Languages

  • Arabic — Native
  • English — Professional Working
  • French — Beginner

08 Contact

Open to SOC analyst and network security roles, internships, and collaboration. Send a message and I'll reply directly to your email.