Skip to content
View salhabheba-cyber's full-sized avatar
0 followers · 2 following

Achievements

Achievement: Quickdraw

Achievements

Achievement: Quickdraw

Block or report salhabheba-cyber

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please donโ€™t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this userโ€™s behavior. Learn more about reporting abuse.

Report abuse
salhabheba-cyber/README.md
Typing SVG

I am a Cybersecurity Engineer specializing in integrating AI with cloud security (AWS) and SOC operations. I build automated security tools that detect and stop threats in real time.

What I deliver:

๐Ÿ” AWS Security: IAM least privilege, MFA, 3-tier VPC with Security Groups & NACLs, GuardDuty, CloudTrail

๐Ÿค– AI for Security: LLM-based phishing detection, anomaly detection (Isolation Forest)

๐Ÿšจ SOC Operations: SIEM (Wazuh, Elasticsearch), IDS/IPS (Snort, Suricata), log analysis, threat hunting

โš™๏ธ Automation (SOAR): Python, Lambda, n8n, Docker, GitHub Actions

๐Ÿ“ Based in Beirut, Lebanon | ๐ŸŒ Open for Remote Work Worldwide

GitHub LinkedIn Hugging Face Email

๐Ÿ› ๏ธ Featured Projects

Project Key Focus Tech Stack Links
AWS Security Lab : IAM Governance Complete IAM system with MFA enforcement, least privilege policies, CloudTrail auditing, and SNS alerts. AWS IAM CloudTrail SNS MFA Least Privilege Repo
AWS Security Lab : Network Security Production-ready 3-tier VPC with public/private subnets, Security Groups, NACLs (defense in depth), VPC Flow Logs, and GuardDuty. AWS VPC Security Groups NACLs GuardDuty Flow Logs Repo
CloudShield Zero-trust IAM policy automation for AWS S3, enforcing least privilege. Python Boto3 AWS IAM Streamlit Repo
AI-PhishDetect Zero-shot LLM phishing detection (87.3% accuracy) to identify AI-generated scams. Python Hugging Face Gradio Repo | Demo
EDR-Hunter-Pro AI-powered EDR with real-time anomaly detection (Isolation Forest) & Telegram alerts. Python Scikit-learn Streamlit Telegram API Repo
SOC-Sentinel Complete SIEM lab deployment (Wazuh, Elasticsearch, Kibana) for threat detection. Wazuh Docker Elasticsearch Kibana Repo
IDS-Defender Network Intrusion Detection System (NIDS) using Snort/Suricata on Kali Linux. Snort Suricata Kali Linux Python Repo
HEBINT-OSINT Advanced OSINT tool for usernames, emails, and phones across 150+ platforms (including Arabic sites). Python Concurrent Futures Colorama Repo
SOAR-Agent Security orchestration and automation (SOAR) framework with playbooks and API integration. Python REST APIs n8n Docker Repo

Cloud Security: AWS (IAM, VPC, Security Groups, NACLs, GuardDuty, CloudTrail, Lambda, SNS, S3) SOC Operations: SIEM (Wazuh, Elasticsearch, Kibana), IDS/IPS (Snort, Suricata), Threat Hunting, Log Analysis Security Automation: Python, Boto3, Lambda, EventBridge, n8n, Docker, GitHub Actions AI/ML Security: LLMs (Hugging Face, Zero-shot Classification), Anomaly Detection (Isolation Forest) OSINT: Phone, Email, Username Investigation, 150+ Platforms, Arabic Platform Support Incident Response: Automated Containment, Forensic Snapshots, SNS Alerts, Playbooks Languages: Arabic (Native), English (Fluent), French (Basic)

๐ŸŽฏ Currently Seeking

Roles: AI Security Engineer, SOC Automation Engineer, Security Researcher Location: Remote (Global) Availability: Immediate

Popular repositories Loading

  1. hebint-osint-tool hebint-osint-tool Public

    HEBINT - Advanced OSINT tool for username, email, and phone investigation across 150+ platforms including Facebook, Instagram, Twitter, LinkedIn, GitHub, and Arabic sites.

    Python 2

  2. Haq Haq Public

    ๐Ÿ›ก๏ธ Haq - Professional Anti-Scam Platform for WhatsApp, SMS, and Phone Calls detection. Built with Streamlit and Python. Protect yourself from phishing and spam.

    Python 2

  3. tryhackme-walkthroughs tryhackme-walkthroughs Public

    My trackhackme learning journey and completed rooms.

  4. salhabheba-cyber salhabheba-cyber Public

    Hands-on SOC and blue team walkthroughs from TryHackMe labs.

  5. Beginners-Guide-to-Security-Monitoring-Detecting-Failed-Windows-Logins Beginners-Guide-to-Security-Monitoring-Detecting-Failed-Windows-Logins Public

    A hands-on SOC lab demonstrating real-time detection of failed Windows 11 authentication attempts using Wazuh SIEM. Perfect for beginners learning security monitoring fundamentals.

  6. AI-Phishing-Detector AI-Phishing-Detector Public

    For the short description (under repository name): Zero-shot phishing detection using LLMs. Identifies AI-generated scams and semantic deception patterns. Built for 2026.

    Python