Welcome to my TryHackMe Challenges repository — a collection of hands-on cybersecurity labs I've completed on TryHackMe. Each folder contains detailed walkthroughs, detection logic, tools used, and key takeaways from different challenges and rooms. This project serves as both a personal learning journal and a showcase of practical cybersecurity skills for Blue Team, SOC Analyst, and detection engineering roles.
I have successfully completed all the rooms and earned the official TryHackMe Certificate of Completion.
| TryHackMe Room | Description | Folder |
|---|---|---|
| Snort Challenge - Live Attacks | Use Snort to detect and stop real-time threats, analyse recorded logs and PCAP files, and identify anomalies | snort-challenge-live-attacks |
| Retracted | Used Windows Powershell, Sysmon logs, and Windows Event Viewer to investigate a ransomware case | endpoint-security-monitoring/retracted |
| TShark Challenge I: Teamwork, TShark Challenge II: Directory | Put TShark skills into practice and analysed network traffic. | tshark-challenge |
| ItsyBitsy | Demonstrated ELK knowledge to investigate an incident | security-information-and-event-management/itsybitsy |
| Benign | Investigate a compromised host using Splunk | security-information-and-event-management/benign |
| Boogeyman 1 | Use Windows Event logs, Wireshark and TShark to investigate an infiltration/exfiltration case | boogeyman-1 |
| Boogeyman 3 | Use ELK with Sysmon and Windows logs to investitgate the TTPs of the Boogeyman adversary | boogeyman-3 |
Note: Although I have completed all the rooms, I have only posted about the ones which I found to be the most interesting
- 🛡️ Intrusion Detection & Prevention: Snort, Suricata
- 📁 PCAP Analysis & Network Forensics: Wireshark, TShark, tcpdump
- 🔍 Threat Detection & Hunting: Writing detection rules, IOC extraction, anomaly detection
- 📜 Log Analysis & SIEM: Splunk, ELK (Elasticsearch, Logstash, Kibana)
- 🧠 Cybersecurity Frameworks: MITRE ATT&CK & D3FEND, Cyber Kill Chain, Diamond Model
- 🐧 Operating Systems: Linux (bash, sysinternals), Windows (Event Viewer, Sysmon)
- 🔥 Incident Response & Malware Triage: Registry, PowerShell, process analysis
- 🛠 Security Operations (SOC) Practices: Alert triage, threat intel mapping
TryHackMe provides an interactive environment to grow as a cybersecurity professional. It offers guided, hands-on labs that cover:
- Blue Team & Red Team methodologies
- Incident detection and response
- Threat hunting & malware analysis
- SOC workflows and real-world simulations
I'm actively building my skills and looking to connect with others in cybersecurity. Please reach out to me on LinkedIn