0x0allenace/0x0allenace

GitHub: 0x0allenace/0x0allenace

网络安全分析师的个人技术作品集，展示DFIR、威胁狩猎和紫队演练的实战经验与实验室项目。

Stars: 1 | Forks: 0

# 嗨，我是 Allen 👋 DFIR • 威胁狩猎 • 紫队演练构建真实的网络安全实验室与调查分析 ### 📌 关于我 🔹 3 年以上网络安全经验，专注于 DFIR 与威胁狩猎 🔹 熟练掌握 Velociraptor、Wireshark 和网络取证 🔹 热衷于分享技术深度解析与安全分析文章 ## 🛠️ 技能与工具 | ![Linux](https://img.shields.io/badge/Linux-FCC624?style=flat&logo=linux&logoColor=black) | ![Python](https://img.shields.io/badge/Python-3776AB?style=flat&logo=python&logoColor=white) | ![Wireshark](https://img.shields.io/badge/Wireshark-1679A7?style=flat&logo=wireshark&logoColor=white) | |---|---|---| | ![Velociraptor](https://img.shields.io/badge/Velociraptor-5B5B5B?style=flat) | ![ELK Stack](https://img.shields.io/badge/ELK%20Stack-005571?style=flat&logo=elasticstack&logoColor=white) | ![Splunk](https://img.shields.io/badge/Splunk-000000?style=flat&logo=splunk&logoColor=white) | | ![Haskell](https://img.shields.io/badge/Haskell-5D4F85?style=flat&logo=haskell&logoColor=white) | ![JavaScript](https://img.shields.io/badge/JavaScript-F7DF1E?style=flat&logo=javascript&logoColor=black) | ![MongoDB](https://img.shields.io/badge/MongoDB-47A248?style=flat&logo=mongodb&logoColor=white) | ## 📊 GitHub 统计 ![GitHub Stats](https://github-readme-stats.vercel.app/api?username=0x0allenace&show_icons=true&theme=tokyonight) ![Top Langs](https://github-readme-stats.vercel.app/api/top-langs/?username=0x0allenace&layout=compact&theme=tokyonight) ## 📂 精选项目 - [**安全日志中的行为异常检测**](https://github.com/0x0allenace/security-anomaly-project) — 异常检测研究 - 🔍 [**模拟 ECorp 的 DFIR 调查**](https://medium.com/@allenace/initial-simulation-for-ecorp-dfir-environment-in-a-lan-setup-0cdeaabae235) — 使用 Velociraptor 进行的事件响应实验室模拟 - 🛡️ [**Active Directory 用户与策略配置**](https://medium.com/@allenace/setting-up-users-groups-and-policies-in-active-directory-8a73f7843ab0) — 在 AD 中配置用户、组及安全策略 ## 📫 联系我 [![LinkedIn](https://img.shields.io/badge/LinkedIn-0A66C2?style=flat&logo=linkedin&logoColor=white)](https://linkedin.com/in/allen-ace-soc-analyst) [![Twitter/X](https://img.shields.io/badge/Twitter-000000?style=flat&logo=x&logoColor=white)](https://x.com/allen_acee) [![Medium](https://img.shields.io/badge/Medium-000000?style=flat&logo=medium&logoColor=white)](https://medium.com/@allenace)

标签：Beacon Object File, DAST, ELK Stack, IP 地址批量处理, PE 加载器, Python, Terraform 安全, Velociraptor, Wireshark, Write-up, 句柄查看, 威胁搜寻, 子域名变形, 安全实验, 安全工具集合, 安全技术, 安全运营, 对手模拟, 已泄露账号检查, 异常检测, 恶意软件分析, 扫描框架, 插件系统, 数字取证, 数据可视化, 无后门, 用户态调试, 紫队, 网络安全, 网络安全审计, 自动化脚本, 逆向工具, 防御态势, 隐私保护