ARCHIVE

Extended an open MCP server to analyze internal SIEM detections alongside public rule sets, enabling automated MITRE ATT&CK coverage tracking and gap analysis.

ML-based scoring engine identifying bot-driven account registrations via structural pattern analysis. 92% accuracy, deployed for real-time fraud reduction.

Falco-based runtime detection stack converting syscall alerts into enriched, investigation-ready insights through AI-assisted analysis.