online · blue team ops // currently @ ADEO

Kutay Koca Cyber Security Engineer

CompTIA Security+ certified engineer working on MSOC & MXDR — 24/7 monitoring, advanced threat hunting and incident response for enterprise infrastructures. Off-hours, I build tools for blue teams.

view work get in touch
  • SOC
  • MSOC
  • MXDR
  • SOAR
  • Splunk
  • QRadar
  • CrowdStrike
~/kutay — zsh
80×24
$whoami
// 01

about

~/about.md

CompTIA Security+ certified Cyber Security Engineer with a background in hands-on projects involving monitoring and analysis of potential & active threats.

I work daily with SIEM solutions and EDR tools such as Splunk, IBM QRadar and CrowdStrike — specialized in Network Analysis using Wireshark and Ticketing & Reporting through TheHive.

Off-hours, I ship tools and SaaS for security teams and small businesses.

role
Cyber Security Engineer
based
Turkey
cert
CompTIA Security+SentinelOne SIRENCisco Ethical HackerCisco Cyber Threat Mgmt
siem / edr
Splunk ESIBM QRadarMicrosoft SentinelCrowdStrikeSentinelOne
tooling
PythonCortex XSOARWiresharkBurp SuiteNessus
focus
MSOCMXDRThreat HuntingIR
status
open to collaborations
// 02

experience

~/cv.log

  1. Cyber Security Analyst · ADEO

    2025 May — Now

    Specialized cybersecurity analyst focused on MSOC (Managed Security Operations Center) and MXDR (Managed Extended Detection and Response) solutions. Managing 24/7 security monitoring, advanced threat hunting, and incident response processes for enterprise infrastructures.

  2. SOC Assistant Specialist · Cyberforce

    2024 Apr — 2025 May

    Worked on SIEM processes, providing security operations services to enterprise clients.

  3. Software Developer & SEO Specialist · Onat Digital

    2021 Jun — 2024 Apr

    Designed websites and planned SEO strategies for small and mid-size clients.

// 03

projects

4 shipped
#01 live · bluutim.com
query 185.220.101.42
verdict malicious 92%
sources honeypot · misp · otx · abusech

Bluutim CTI

Threat intelligence platform that turns IP and domain lookups into actionable verdicts. Aggregates signals from our own honeypot network with major CTI feeds — MISP, AlienVault OTX, AbuseCH and more — and returns a single confidence-scored result with contextual tags and source breakdown.

Threat IntelHoneypotIP / Domain LookupEnrichment
live demo
#02 live · by Bluutim
https://account-verify-login.phish-bait.tld/secure

URLBox

A URL inspection tool by Bluutim that lets you safely analyze suspicious URLs in isolated sessions. Launch a session, observe page behavior and review resulting signals in a calm, focused workflow. Sessions expire after 5 minutes with detailed reports available after review.

URL AnalysisThreat DetectionWeb Security
live demo
#03 open source · PyPI
─ resume.pdf2.1 MB
─ project.zip18.4 MB
─ uploading…72%

filesh

Simple and modern LAN file sharing server with a beautiful web UI. Share files and folders across your local network with ease — drag & drop upload, file preview, QR code for mobile access, and 6-digit access code security.

PythonFlaskWeb UILAN
view code
#04 live · mekanda.menu

mekanda.menu

QR menu SaaS for restaurants. Zero-install digital menus, multilingual, with analytics on what gets ordered and what gets ignored.

SaaSF&BQR
visit
// 04

contact

~/contact.md
~/send_message.form
POST /contact
channel ready · end-to-end