GithubHelp home page GithubHelp logo

Shamim Reza

Welcome to my personal GitHub profile page. I'm Shamim Reza, a Chief Technology Officer (CTO) and CISO with over 15 years of experience in cybersecurity, enterprise solutions, and technology leadership.

Get in Touch

About Me

  • šŸŒ Current Role: Chief Technology Officer at Pipeline

  • šŸ’» Expertise:

    • Cybersecurity Architecture & Strategy
    • SOC & CSIRT Building
    • AI & Machine Learning in Security
    • DevSecOps & Infrastructure Automation
    • Threat Hunting & Detection Engineering
    • Forensic Analysis and Cyber Incident Management
    • Governance, Risk management and Compliance
    • Project Management and Technology Leadership

  • šŸŒ± Ongoing Projects:

    • Developing cybersecurity training courses and workshops for Phoenix Academy
    • Expanding TheTeamPhoenix initiative focused on community well-being in cybersecurity
    • Enhancing AI research applications in security operations

  • šŸ“š Certifications:

    • EC-Council Certified Security Analyst (ECSA v9)
    • Machine Learning Scientist with Python
    • Data Engineer in Python

  • šŸ”­ Current Focus:

    • Exploring new opportunities in technology leadership and cybersecurity innovation
    • Leading advanced threat detection and response initiatives

Conference Talks

I have had the opportunity to speak at several cybersecurity and technology conferences, sharing my unique project deployment and insights and industrial research work:

  • šŸŽ¤ "Cyber Threat Landscape of Bangladesh" - Bangladesh Cyber Security Summit, Dhaka, Bangladesh, 2024
  • šŸŽ¤ "API Security Deep Dive: Defensive Fortifications and Offensive Exploits - Fortifying the Gates: Advanced Strategies for Defending APIs in the Modern Cyber Landscape" - Phoenix Summit, Dhaka, Bangladesh, 2024
  • šŸŽ¤ "API Security Deep Dive: Defensive Fortifications and Offensive Exploits - Exposing the Underbelly: Offensive Tactics for Exploiting API Vulnerabilities" - Phoenix Summit, Dhaka, Bangladesh, 2024
  • šŸŽ¤ Exploring the DNS Threat Landscape in Bangladesh." ā€“ renasCON, Dhaka, Bangladesh, 2023
  • šŸŽ¤ "12 Years in DNS Security - As a Defender" - bdNOG 15, Dhaka, Bangladesh, 2022 and btNOG 10, Paro, Bhutan, 2023
  • šŸŽ¤ "Adversary Pattern Analysis - A journey with APNIC honeypot" ā€“ APNIC Oceania, NFH, 2021
  • šŸŽ¤ "Introduction to Network Documentation with NetBox" - SANOG 37, Online, 2021
  • šŸŽ¤ "People, Process and Technology - Leverage Open Source Technology to build your SOC" ā€“ APRICOT - 26, 2021.
  • šŸŽ¤ "Can Artificial Intelligence Secure your Infrastructure ā€œ?ā€ A Hands-on Tutorial on Finding Anomalies in DNS Traffic using Machine Learning Algorithm" - APRICOT-25 Conference,2020, Melbourn, Australia.
  • šŸŽ¤ "Having Honeypot for Better Network Security Analysis - A journey with APNIC honeypot" - bdNOG 12, 2020
  • šŸŽ¤ "Can Artificial Intelligence Secure your Infrastructure ā€˜?" ā€“ Open Source Summit - Europe, 2019
  • šŸŽ¤ "IP Anycast for Recursive DNS Service - a Hands-on Tutorial for ISPs" - SANOG 34, Kolkata, India, 2019
  • šŸŽ¤ "Anomaly Detection in DNS Traffic" - bdNOG 10, Chittagong, 2019
  • šŸŽ¤ "Implementation of DNS Anycast a case study" - SANOG 32, Dhaka, Bangladesh, 2018
  • šŸŽ¤ "Hunt Down the Evil of your Infrastructure" - RootConf, Bangalore, India 2018
  • šŸŽ¤ "The Security myth of IPv6 and DNS64" - RootConf, Bangalore, India 2018

Research Papers

My research primarily focuses on cybersecurity strategies, AI-driven security solutions, and infrastructure management:

  • šŸ“„ "AI-Driven Threat Detection: A Comparative Study" - (2023)
  • šŸ“„ "Anomaly Detection in Large-Scale Networks Using Machine Learning" ā€“ (2018)
  • šŸ“„ "Automating Incident Response: Best Practices and Future Directions" ā€“ (2022)
  • šŸ“„ "Securing ISPs: A Comprehensive Guide to Best Practices" ā€“ (2017)
  • šŸ“„ "Red Team vs. Blue Team: A Practical Guide to Cybersecurity Exercises" ā€“ (2021)

Featured Repositories

  • šŸ”’ DNSSecurityAnalysisTools: Python based DNS Security Analysis tools.

  • šŸ§  Conference Presentation: The collection of presentations and research work that Shamim has given over the years in conferences and workshops. (repo dev in progress)

  • šŸŒ TheTeamPhoenix: Repository for TheTeamPhoenix initiative, focused on community-driven cybersecurity projects. (repo dev in progress)

A. S. M. Shamim Reza's Projects

admin-scanner icon admin-scanner

This tool is design to find admin panel of any website by using custom wordlist or default wordlist easily and allow you to find admin panel trough a proxy server

adminlte icon adminlte

AdminLTE - Free admin dashboard template based on Bootstrap 4 & 3

anchore-engine icon anchore-engine

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

anomaly-detection icon anomaly-detection

Allstate Project: Anomaly Detection in Cybersecurity Data, Specifically Within DNS Logs

apkhunt icon apkhunt

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

apt-hunter icon apt-hunter

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

artifactcollector icon artifactcollector

šŸšØ The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system

attack-datasources icon attack-datasources

This content is analysis and research of the data sources currently listed in ATT&CK.

attack-flow icon attack-flow

Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.

attack-navigator icon attack-navigator

Web app that provides basic navigation and annotation of ATT&CK matrices

attack_range icon attack_range

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

autorecon icon autorecon

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

awesome-csirt icon awesome-csirt

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

awesome-cybersecurity-blueteam icon awesome-cybersecurity-blueteam

:computer:šŸ›”ļø A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

awesome-threat-modelling icon awesome-threat-modelling

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

awsattacks icon awsattacks

This repo contains IOC, malware and malware analysis associated with AWS cloud

best-of-ml-python icon best-of-ml-python

šŸ† A ranked list of awesome machine learning Python libraries. Updated weekly.

beszel icon beszel

A lightweight server monitoring hub with historical data, docker stats, and alerts.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    šŸ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. šŸ“ŠšŸ“ˆšŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ā¤ļø Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.