Sudeep Waingankar

Developed a tracker to monitor and analyze Amadey botnet activity. Created a Python-based extractor for Netwire to automate C2 detection. Developed a threat hunting rule to identify activity related to the Evilginx phishing kit using static indicators, certificate- based detection, and redirect patterns. Developed automated pipeline for phishing pages classification. Created telemetry-based hunting rules for automated detection of malicious URLs Worked and provided training for generic detection.

Developed generic signatures in C to detect bulk samples. Working on both PE and Non-PE file adding generic, static and behaviour detection. Analysing Amache, Event logs, Registry, Telemetry to submit detailed reports for real-time customer escalations. Monitoring telemetry to create detection rules. Informing customers of potential attacks based on telemetry data. Manage client incidents on a daily basis. Analysing and de-obfuscating PE and non PE files.