# Shahrukh Khan — heyshahrukh.me > Cybersecurity engineer: SOC operations, detection engineering, threat intelligence, AI security, automation, and product execution. ## Main pages - Home: https://heyshahrukh.me/ - Blogs: https://heyshahrukh.me/blogs - Certifications: https://heyshahrukh.me/certs - Frames (gallery): https://heyshahrukh.me/frames - Utils (downloads): https://heyshahrukh.me/utils - Connect: https://heyshahrukh.me/connect ## Feeds - RSS: https://heyshahrukh.me/feed.xml - Sitemap: https://heyshahrukh.me/sitemap.xml - Image sitemap: https://heyshahrukh.me/image-sitemap.xml ## Blog posts - 10 Cybersecurity Case Studies Every Security Engineer Should Study: https://heyshahrukh.me/blogs/10-cybersecurity-case-studies-every-security-engineer-should-study - MITRE ATLAS: The Security Framework Built for the Age of AI: https://heyshahrukh.me/blogs/mitre-atlas-the-security-framework-built-for-the-age-of-ai - What is an Agentic AI SOC Analyst? A Comprehensive Guide: https://heyshahrukh.me/blogs/what-is-an-agentic-ai-soc-analyst-a-comprehensive-guide - Essential SOC Tools and Technologies: https://heyshahrukh.me/blogs/essential-soc-tools-and-technologies - AI in Modern Email Security: https://heyshahrukh.me/blogs/ai-in-modern-email-security - Email Security Triage Framework: https://heyshahrukh.me/blogs/email-security-triage-framework - SOC L1 Email Investigation Guide: https://heyshahrukh.me/blogs/soc-l1-email-investigation-guide - Email Security Best Practices for Modern Organizations: https://heyshahrukh.me/blogs/email-security-best-practices-for-modern-organizations - MITRE ATT&CK v19 Explained: https://heyshahrukh.me/blogs/mitre-attck-v19-explained - MITRE ATT&CK v19: Why the New Tactic Matters for SOC Teams: https://heyshahrukh.me/blogs/mitre-attck-v19-why-the-new-tactic-matters-for-soc-teams - Why Most SOC Detections Fail: https://heyshahrukh.me/blogs/why-most-soc-detections-fail - OWASP AI Top 10 with MITRE ATLAS: https://heyshahrukh.me/blogs/owasp-ai-top-10-with-mitre-atlas - AI Security Monitoring Logs Guide: https://heyshahrukh.me/blogs/ai-security-monitoring-logs-guide - Why Great Products Still Fail: https://heyshahrukh.me/blogs/why-great-products-still-fail - Application Detection & Response: https://heyshahrukh.me/blogs/application-detection-response - Building an Email Header Filter: https://heyshahrukh.me/blogs/building-an-email-header-filter - The Hidden Risk of Hero Culture: https://heyshahrukh.me/blogs/the-hidden-risk-of-hero-culture - Why 90% of Products Fail: https://heyshahrukh.me/blogs/why-90-of-products-fail - T1036.003-Rename System Utilities: https://heyshahrukh.me/blogs/t1036003-rename-system-utilities - T1105-Ingress Tool Transfer: https://heyshahrukh.me/blogs/t1105-ingress-tool-transfer - T1218.011-Rundll32: https://heyshahrukh.me/blogs/t1218011-rundll32 - T1003-OS Credential Dumping: https://heyshahrukh.me/blogs/t1003-os-credential-dumping - T1114.003-Email Forwarding Rule: https://heyshahrukh.me/blogs/t1114003-email-forwarding-rule - T1027-Obfuscated Files or Information: https://heyshahrukh.me/blogs/t1027-obfuscated-files-or-information - T1078.004-Cloud Accounts: https://heyshahrukh.me/blogs/t1078004-cloud-accounts - T1047-Windows Management Instrumentation: https://heyshahrukh.me/blogs/t1047-windows-management-instrumentation - T1059.003 - Windows Command Shell: https://heyshahrukh.me/blogs/t1059003-windows-command-shell - T1059.001 - PowerShell: https://heyshahrukh.me/blogs/t1059001-powershell ## Frames (gallery photos) - SOCByte × Pak Qatar Group: https://heyshahrukh.me/frames/socbyte-pak-qatar-group-ef9e8b33 - SOCByte at GISEC GLOBAL 2025: https://heyshahrukh.me/frames/socbyte-at-gisec-global-2025-1b8c40e8 - Representing SOCByte at GISEC 2025: https://heyshahrukh.me/frames/representing-socbyte-at-gisec-2025-d3737862 - SOCByte Across Africa: https://heyshahrukh.me/frames/socbyte-across-africa-4d83e2b9 - Work Trip to Abuja, Nigeria: https://heyshahrukh.me/frames/work-trip-to-abuja-nigeria-cb25dacf - Work Trip to Khobar, KSA: https://heyshahrukh.me/frames/work-trip-to-khobar-ksa-0aaf911b - Securing Tomorrow ’25: https://heyshahrukh.me/frames/securing-tomorrow-25-c64e8fc6 - AI Wrapper 2025 Regional Champion: https://heyshahrukh.me/frames/ai-wrapper-2025-regional-champion-83b3d119 - CISM Certification Achievement: https://heyshahrukh.me/frames/cism-certification-achievement-1475e146 - Nigeria Cybersecurity Conference 2025: https://heyshahrukh.me/frames/nigeria-cybersecurity-conference-2025-eb408862 - SOCByte at NED University: https://heyshahrukh.me/frames/socbyte-at-ned-university-22799d7e - InfoSec'25 Conference: https://heyshahrukh.me/frames/infosec25-conference-2fdfa8cc - SOCByte × StrongKeep × Cythority: https://heyshahrukh.me/frames/socbyte-strongkeep-cythority-53913e7a - Wazuh Session at Securing Tomorrow: https://heyshahrukh.me/frames/wazuh-session-at-securing-tomorrow-ae44dc85 - Cybersecurity Panel at NIC Islamabad: https://heyshahrukh.me/frames/cybersecurity-panel-at-nic-islamabad-83710479 - Cybersecurity Panel at NIC Karachi: https://heyshahrukh.me/frames/cybersecurity-panel-at-nic-karachi-823ce58a - AI Wrapper 2025 Regional Champion: https://heyshahrukh.me/frames/ai-wrapper-2025-regional-champion-838f8856 - Wazuh Session at Securing Tomorrow: https://heyshahrukh.me/frames/wazuh-session-at-securing-tomorrow-0f9fef17 - King Abdulaziz Center for World Culture: https://heyshahrukh.me/frames/king-abdulaziz-center-for-world-culture-39eca815 - Cybersecurity Awareness Panel: https://heyshahrukh.me/frames/cybersecurity-awareness-panel-f8f3f09d - MS Thesis in Information Security: https://heyshahrukh.me/frames/ms-thesis-in-information-security-0c5496c4 - SOCByte Farmhouse Retreat: https://heyshahrukh.me/frames/socbyte-farmhouse-retreat-2f41e641 - Independence Day at SOCByte: https://heyshahrukh.me/frames/independence-day-at-socbyte-54613e27 - Meeting at Zong Headquarters: https://heyshahrukh.me/frames/meeting-at-zong-headquarters-c6dd38b4 - Meeting at Zarai Taraqiati Bank Ltd: https://heyshahrukh.me/frames/meeting-at-zarai-taraqiati-bank-ltd-c8ae282b - Networking in Islamabad: https://heyshahrukh.me/frames/networking-in-islamabad-aea2d643 - Great Moments with Joyce Orogun in Abuja: https://heyshahrukh.me/frames/great-moments-with-joyce-orogun-in-abuja-c7d08aee - HackWeek Sentinel by ACM Cyber Security: https://heyshahrukh.me/frames/hackweek-sentinel-by-acm-cyber-security-341fa1af - Community Meet Up in Islamabad: https://heyshahrukh.me/frames/community-meet-up-in-islamabad-b75471a0 - Featured Speaker @ SOCByte Remote Intern: https://heyshahrukh.me/frames/featured-speaker-socbyte-remote-intern-dae82d47 ## Utils (downloads) - Cross-Cluster Search (CCS) Wazuh: https://heyshahrukh.me/utils/cross-cluster-search-ccs-wazuh-31b18744 - Guide: Role-Based User Creation in Wazuh: https://heyshahrukh.me/utils/guide-role-based-user-creation-in-wazuh-0024e933 - MITRE ATT&CK Tactics and Detection Controls: https://heyshahrukh.me/utils/mitre-attck-tactics-and-detection-controls-c8daab7a - IOC Extractor: PDF to Excel for SOC: https://heyshahrukh.me/utils/ioc-extractor-pdf-to-excel-for-soc-36cb2ba4