Back to all projects
61173923
Part 1: Planning the Infrastructure
2024-11-30
Samson Otori
Personal Project
Blue Team
Challenge
Gaining practical experience in SOC tasks like alert management, response actions, and data enrichment using a functional SOAR setup.
Solution
Building a home lab environment from scratch, diagramming the architecture, and planning the deployment of Wazuh, The Hive, and Shuffle for event logging, alert triggering/enrichment, and case management.
Results
- Planned the SOC lab infrastructure
- Created a logical flow diagram using Draw.io
- Outlined the main workflow from event generation to case management
- Mapped alert flow using color-coded connections
Project Gallery
Blue Team
SIEM
SOAR
Wazuh
The Hive
Shuffle
Windows 10
Draw.io
Continue Reading
PreviousProject 2: SOC Automation Project · Part 2 of 3
Part 2: Infrastructure Setup
Setting up the core infrastructure components for our SOC automation environment including Wazuh, Windows client, and TheHive
Mar 5, 2025
Read previous
NextProject 2: SOC Automation Project · Part 2 of 3
Part 2: Infrastructure Setup
Setting up the core infrastructure components for our SOC automation environment including Wazuh, Windows client, and TheHive
Mar 5, 2025
Read next
Related Projects
Oldest Projects
Newest Projects
Blue Team
Project 6.4: Agent-Based Vulnerability Monitoring on Linux with Tenable Nessus Agent
Dec 5Project
Blue Team
Project 6.3: Agent-Based Monitoring on Windows 11 Using Tenable Nessus Agents
Nov 28Project
Blue Team
Project 6.2: LOG(N) Pacific Internship – Windows 11 Compliance Scanning Using a Custom Tenable Scan Template
Nov 25Project
Project Categories
All
Cloud
Blue Team
Red Team
Infrastructure