π Eyouel Melaku β Systems Administrator & Cybersecurity Engineer
Hi, Iβm Eyouel, a Systems Administrator and Cybersecurity Engineer focused on building secure, scalable, and automated IT environments. I work across Windows Server, Active Directory, VMware, PowerShell automation, cloud security, and detection engineering β designing hands-on labs and real-world solutions for systems and security teams.
I document my work publicly so others can learn, replicate, and improve their environments.
π Core Focus Areas
Systems Administration: Windows Server, AD DS, DNS/DHCP, GPO, DFS
Automation: PowerShell scripting, patch automation, provisioning
Virtualization: VMware Workstation / vSphere concepts
Security Engineering: CIS hardening, PKI, identity security
Detection & IR: Sysmon, WEF, log analysis, threat detection
Cloud Security: Azure & AWS identity, IAM, hardening, monitoring
𧩠Featured Projects (Labs)
These labs replicate real enterprise IT + cybersecurity workflows.
π Active Directory Multi-Domain Lab
active-directory gpo powershell dns Enterprise AD environment with OU structure, DHCP/DNS, Group Policy hardening, and PowerShell automation.
π‘ Windows Server Security & Hardening
cis-benchmark security-hardening Password & lockout policies, RDP hardening, firewall configuration, workstation baseline hardening.
πΎ DFS File Server High Availability Lab
dfs high-availability windows-server DFS Namespace + DFS Replication across two nodes with secure NTFS and share permissions.
βοΈ PowerShell Automation Toolkit
powershell automation sysadmin Provisioning automation, inactive user cleanup, inventory collection, GPO compliance, network config scripting.
π§° Windows Patching Automation
patch-management operations Detect, install, and log Windows updates via PowerShell for operational efficiency and compliance.
𧩠Centralized Logging Lab (WEF + Sysmon)
wef siem sysmon incident-detection End-to-end centralized logging pipeline for detection engineering and blue team workflows.
βοΈ Cloud Security Hardening (Azure/AWS)
cloud-security iam zero-trust Secure IAM policies, MFA enforcement, encryption, continuous monitoring, and cloud posture improvements.
π Incident Response & Detection Lab
incident-response blue-team log-analysis Hands-on IR workflows using Sysmon telemetry, WEF logs, attacker TTP analysis, and detection rules.
π Certifications
Showcasing my continuous growth in systems administration, cloud security, and cybersecurity.
Certification Issuer Status CompTIA Security+ (SY0-601) CompTIA βοΈ Active Bachelor of Science in Information Technology β Cyber Security George Mason University βοΈ Completed
More certifications coming (AZ-500, CySA+, CCSP, etc.).
π Skills
Infrastructure: Windows Server, AD DS, DNS/DHCP, GPO, DFS Security: CIS benchmarks, PKI, Sysmon, WEF, attacker TTP detection Automation: PowerShell, scripting, server hardening Cloud: Azure AD / Entra ID, AWS IAM, cloud hardening Network: TCP/IP, routing, firewalls, VLANs Virtualization: VMware Workstation, vSphere concepts
π GitHub Stats
π€ Letβs Connect
π« Email: eyouelmelaku@gmail.com
π LinkedIn: (https://www.linkedin.com/in/eyouel-melaku)