Jeremy Tarkington - Security Portfolio

Systems/Security Engineer specializing in incident response, SIEM/EDR, and security automation. Explore my projects below.

Cybersecurity Portfolio

Lake Charles, LA

Projects

AD LAB

Core Range

Active Directory Range

Multi-VM AD lab used for Group Policy, auth workflows, and attack/defense practice in a safe, rebuildable environment.

Active View lab details

CYBERLAB

Detonation

Security Tooling & Detonation Lab

Isolated cyber lab for safely detonating malware, capturing endpoint and network telemetry, and rehearsing analysis workflows with Wazuh, PCAPs, and scripted runbooks.

Active View lab details

12 DAYS OF CYBER

CTF

Holiday CTF Challenge Series

Progressive 12-day CTF with story-driven challenges covering encoding, hash cracking, log analysis, JavaScript deobfuscation, PowerShell malware, web recon, DNS tunneling, SQL injection, and more. Gated progression with flag-based unlocking.

Active View Challenge

VIPERKIT

IR Toolkit

Incident Response Toolkit

Portable desktop IR toolkit that walks techs through Hunt → Persist → Sweep → Cleanup → Hardening, with case tracking, reports, and audit trails built for real MSP incidents.

Active View tool

VIPERAI INBOX

AI Email Intel

AI-Powered Email & Phishing Analyzer

Local AI-powered phishing and attachment analyzer for real-world email tickets — drag and drop .eml/.msg to get technical findings, a user-friendly explanation, and clear recommended actions.

In Progress View Design

WAZUH RULES

SIEM/EDR

Custom Detection Rules

Custom Wazuh detection rules for identifying malicious PowerShell, persistence mechanisms, lateral movement, and credential theft. Tuned to reduce false positives while catching real threats.

Active View Rules

PS ONE-LINERS

Quick Reference

50+ PowerShell IR Commands

Comprehensive collection of PowerShell one-liners for incident response, forensics, AD security, and threat hunting. Downloadable reference guide.

Active View Commands

CHECKLISTS

Templates

Downloadable Assessment & IR Templates

Full CMMC L2 (110 checks), CIS benchmarks, IR playbooks, and report templates. All checklists downloadable for real-world use.

Active View & Download

CODE SAMPLES

Scripts

PowerShell, Bash & Python

Collection of security automation scripts and IR tools. PowerShell for Windows forensics, Bash for system analysis, and Python for threat hunting and data processing.

Active View Scripts

WRITEUPS

HTB/THM

Case Studies & Technical Reports

Technical reports and case studies from HackTheBox, TryHackMe, and real-world engagements covering Active Directory exploitation, penetration testing, digital forensics, compliance (CMMC/NIST), and detection engineering.

Active View Writeups

Future Projects

🍯

In Development

ViperAI Honeypot

High-interaction LLM honeypot that imitates an internal AI assistant to attract attackers attempting prompt injection, data exfiltration, and tool abuse. Progressive disclosure of synthetic data while logging all attack techniques.

LLM Security Deception Threat Intelligence

🛡️

In Development

ViperAI Sentinel Local (VSL)

Zero-infrastructure local "mini EDR" for Windows endpoints. Combines hard rules with local ML anomaly detection to hunt persistence, LOLBins, and suspicious behavior. Read-only, encrypted logs, email alerts.

EDR ML Detection MSP-Focused

Technical Expertise

Incident Response & Remediation 90%

Detection Engineering (SIEM/EDR) 85%

Digital Forensics & Threat Hunting 80%

Active Directory Exploitation & Red Team 75%

GRC & Compliance (CMMC/NIST) 85%

Automation & Scripting (PowerShell/Bash/Python) 90%

Identity & Tenant Admin (M365/Entra/AD) 85%

Network Security & Zero-Trust 80%

Endpoint Lifecycle & Platform Engineering 85%

Certifications

CompTIA A+ ✓

Google IT Support ✓

CompTIA Network+ In Progress

CompTIA Security+ In Progress