About me.

Cybersecurity learner. SOC analyst in progress.

I'm passionate about blue team operations, digital forensics, and threat hunting. This blog documents my learning journey and investigations.

LocationVietnamTime zoneUTC +7Email[email protected]
S

Stone Cyber

SOC Analyst In Progress

48Labs23Writeups17Investigations276hStudy Hours

My skills

Malware Reversing

Static and dynamic analysis notes.

MITRE ATT&CK Mapping

Technique mapping for investigations.

Digital Forensics

Evidence handling and timeline review.

Threat Hunting

Hypothesis-driven detection ideas.

Career timeline

2026/03 – Present
Security Operations CenterThreat Detection & Incident Response

Current focus on detection engineering, DFIR investigation and threat hunting.

  • Threat detection
  • Incident response
  • Timeline analysis
  • Detection improvement
Tech stack:SplunkKQLSigmaYARA
2025/10 – 2026/02
SOC Analyst TraineeBlue Team Operations

Monitored, detected and responded to security incidents in real environments.

  • Monitored and triaged alerts from SIEM
  • Investigated Windows, network and cloud incidents
  • Performed log analysis, IOC hunting and threat validation
  • Documented incidents and created knowledge base articles
Tech stack:Microsoft SentinelKQLWindows ForensicsSysmonWireshark
2025/07 – 2025/09
SOC InternCMC Cyber Security

Joined SOC activities and learned real-world alert triage and incident investigation workflows.

  • SIEM alert review
  • IOC checking
  • Incident notes
  • Basic threat analysis
Tech stack:SIEMSysmonWindows LogsWireshark
2022/09 – 2026/06
CMC UniversityBachelor of Information Security

Studied information security foundations, networking, programming and cybersecurity fundamentals.

  • Security fundamentals
  • Network defense
  • Programming
  • Blue team learning
Tech stack:NetworkingLinuxWindowsSecurity

Learning timeline

Future
GCFA GoalPreparing for GIAC Certified Forensic Analyst.
2026
FOR500 Learning JourneyWindows forensics and incident response.
2026
CyberDefenders Analyst PathCompleted SOC analyst learning path.
2025
Started Blue Team LabsBeginner path and hands-on labs.

My certification

Certification roadmap

Active certifications, completed courses and security labs.

CyberDefendersSOC Analyst
Completed
SANS FOR500Windows Forensics
In progress
GCFAGIAC Certified Forensic Analyst
Goal
More to comeContinuous learning

My tools

Microsoft Sentinel
KQL
Wireshark
Sysmon
Velociraptor
YARA
Volatility
Ghidra
Let's connect

Always open to discussing cybersecurity, DFIR and blue team opportunities.