Skip to content
View Kjean13's full-sized avatar
🎯
Focusing
🎯
Focusing
2 followers · 2 following

Block or report Kjean13

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Kjean13/README.md

Jean K.

Blue Team SOC DFIR Active Directory

Cybersecurity student (Infrastructure & Secure Systems).
Focused on Blue Team, SOC operations, Active Directory security and DFIR.

-> eliesec.fr

Projects & Contributions

ADFT - Active Directory Forensic Toolkit

Python tool for AD forensic analysis: EVTX/JSON ingestion, MITRE ATT&CK mapping, multi-event correlation, timeline reconstruction, HTML/JSON/CSV reports.
Python MITRE ATT&CK Windows JSON
-> github.com/Kjean13/ADFT

RuleScope - Sigma Rule Governance CLI

Governance engine for Sigma detection catalogs. Semantic duplicate detection, weakness scoring, ATT&CK coverage, and CI quality gates.
Python Sigma YAML Status
-> github.com/Kjean13/rulescope

GOAD-Light - Lab Deployment Guide

Step-by-step deployment of Orange Cyberdefense's vulnerable AD lab on VirtualBox. Documents real errors, fixes, and the detection stack built on top (Wazuh, Suricata, Zeek, OpenCTI, Kali)

Experience

Freelance - Systems & Cloud Technician · 2025
M365 and Entra ID administration for SMB clients: Conditional Access policy deployment, workstation hardening, N1/N2 support and incident triage.
M365 Entra ID Azure Intune

SYSDECO - IT Technician Intern · 2024
User support and M365 administration, network diagnostics, ITSM documentation.
M365 Windows Cisco

Certifications

Cisco NIST ANSSI PIX

Stack

Python Bash PowerShell Linux Ubuntu Docker Git GitHub Wazuh Kali Wireshark Splunk Elastic VS Code

Contact

Email Portfolio LinkedIn GitHub

Pinned Loading

  1. ADFT ADFT Public

    Active Directory Forensic Toolkit : Detect & reconstruct AD attacks from Windows event logs (EVTX)

    Python 51 2

  2. rulescope rulescope Public

    Governance engine for Sigma detection catalogs. Semantic duplicate detection, weakness scoring, ATT&CK coverage, and CI quality gates.

    Python

  3. aiagent-detection-rules aiagent-detection-rules Public

    Detection rules for the Claude Code source leak : 16 Sigma rules, Splunk, Elastic, YARA. Lab-validated on GOAD Light DC02.

    Shell 3

  4. goad-light-deployment goad-light-deployment Public

    Deploying Orange Cyberdefense's GOAD-Light on VirtualBox | step-by-step guide with troubleshooting and detection stack

    2