Simple CLI script to assist GRC analysts with risk ranking vendors.

Неофициальное зеркало БДУ ФСТЭК без геоблока: XML + XLSX + готовая SQLite-база с FTS5-индексом. 86 000+ уязвимостей, доступно через raw.githubusercontent.com.

The Way of the Cyber Warrior: Tactical Cyber Defense

Real-time distributed cyber-threat observatory monitoring ransomware attacks on global critical infrastructure. Features automated dark-web ingestion, Citizen Impact Scoring (CIS), and national risk heatmaps. Built with Next.js 15, Prisma, and Playwright

Cyber risk and threat assessment project aligned with MITRE ATT&CK, OWASP Top 10, ISO 27001, NIST, and Threat Intelligence methodologies.

Professional cybersecurity consulting portfolio featuring governance, architecture, incident response, and risk management case studies.

Enterprise STRIDE threat modeling assessment with DFD analysis, trust boundaries, attack surface evaluation, and mitigation mapping.

Cyber risk governance framework covering control assessment, risk evaluation, remediation tracking, and compliance alignment.

Governance-focused incident response framework aligned with NIST 800-61, operational resilience, executive reporting, and cyber risk management principles.

Repository containing the final essay of the Ethics and Law of Data and AI course, valid for the accademic year 2024-2025 at UniTs.

Cybersecurity risk intelligence dashboard analyzing CVE vulnerabilities, CVSS risk scores, and financial exposure using Power BI.

Enterprise third-party risk assessment framework covering vendor security evaluation, inherent risk scoring, compliance mapping, and remediation governance.

Repository for Cybrary Security Engineering & Cyber Risk – includes notes, docs, scenarios, extras, and certificate of completion.

Risk Analytics

Cybersecurity vulnerability assessment and risk analysis of a Linux MySQL database server using NIST SP 800-30, NIST CSF, and CIA Triad principles. Includes risk scoring, control recommendations, and remediation planning.

CVSS-based asset & vulnerability risk, remediation simulation, LLM-assisted metadata enrichment

OSINT-based threat intelligence assessment analyzing phishing, brand impersonation, and identity-centric risks affecting an IAM provider.

Cybersecurity risk assessment project for a simulated SaaS environment using GRC principles, residual risk analysis, and risk treatment methodology.

Enterprise identity and access risk analysis project identifying privileged access exposure, segregation of duties violations, and orphaned high-risk accounts using SQL and Excel