{"id":50411975,"url":"https://github.com/srkyn/srkyn","last_synced_at":"2026-05-31T04:02:55.945Z","repository":{"id":355500339,"uuid":"1228329487","full_name":"srkyn/srkyn","owner":"srkyn","description":"Cybersecurity profile focused on security operations, identity cleanup, endpoint review, detection notes, and defensive tooling.","archived":false,"fork":false,"pushed_at":"2026-05-29T17:00:29.000Z","size":790,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-05-29T17:03:34.125Z","etag":null,"topics":["cybersecurity","detection-engineering","endpoint-security","iam","profile-readme","security-automation","security-operations","security-portfolio","soc","vulnerability-management"],"latest_commit_sha":null,"homepage":"https://srkyn.com/","language":"CSS","has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/srkyn.png","metadata":{"files":{"readme":"README.md","changelog":"changelog/index.html","contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-05-03T22:20:04.000Z","updated_at":"2026-05-29T17:00:59.000Z","dependencies_parsed_at":null,"dependency_job_id":"391283f7-59cb-491a-9f89-41cb803d91d5","html_url":"https://github.com/srkyn/srkyn","commit_stats":null,"previous_names":["srkyn/srkyn"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/srkyn/srkyn","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/srkyn%2Fsrkyn","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/srkyn%2Fsrkyn/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/srkyn%2Fsrkyn/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/srkyn%2Fsrkyn/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/srkyn","download_url":"https://codeload.github.com/srkyn/srkyn/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/srkyn%2Fsrkyn/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33718449,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-05-31T02:00:06.040Z","response_time":95,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","detection-engineering","endpoint-security","iam","profile-readme","security-automation","security-operations","security-portfolio","soc","vulnerability-management"],"created_at":"2026-05-31T04:02:55.596Z","updated_at":"2026-05-31T04:02:55.923Z","avatar_url":"https://github.com/srkyn.png","language":"CSS","funding_links":[],"categories":[],"sub_categories":[],"readme":"![David Sarkisyan cybersecurity profile banner](assets/security-profile-banner.svg)\n\n# David Sarkisyan\n\nNew York City. Defensive security tools and detection logic for IAM, endpoint, and SOC workflows. All work is read-only, evidence-first, and publicly reproducible.\n\n[![STIGPilot tests](https://img.shields.io/github/actions/workflow/status/srkyn/stigpilot/tests.yml?branch=main\u0026style=flat-square\u0026label=stigpilot+tests)](https://github.com/srkyn/stigpilot/actions/workflows/tests.yml) [![lapse CI](https://img.shields.io/github/actions/workflow/status/srkyn/lapse/ci.yml?branch=main\u0026style=flat-square\u0026label=lapse+ci)](https://github.com/srkyn/lapse/actions/workflows/ci.yml) [![IdentityRiskGraph tests](https://img.shields.io/github/actions/workflow/status/srkyn/IdentityRiskGraph/python-tests.yml?branch=main\u0026style=flat-square\u0026label=identityriskgraph+tests)](https://github.com/srkyn/IdentityRiskGraph/actions/workflows/python-tests.yml) [![splunk-detection-content validation](https://img.shields.io/github/actions/workflow/status/srkyn/splunk-detection-content/validate.yml?branch=main\u0026style=flat-square\u0026label=splunk+validation)](https://github.com/srkyn/splunk-detection-content/actions/workflows/validate.yml) [![relic CI](https://img.shields.io/github/actions/workflow/status/srkyn/relic/ci.yml?branch=main\u0026style=flat-square\u0026label=relic+ci)](https://github.com/srkyn/relic/actions/workflows/ci.yml) [![browser-bailiff CI](https://img.shields.io/github/actions/workflow/status/srkyn/browser-bailiff/ci.yml?branch=main\u0026style=flat-square\u0026label=browser-bailiff+ci)](https://github.com/srkyn/browser-bailiff/actions/workflows/ci.yml) [![undertaker CI](https://img.shields.io/github/actions/workflow/status/srkyn/undertaker/ci.yml?branch=main\u0026style=flat-square\u0026label=undertaker+ci)](https://github.com/srkyn/undertaker/actions/workflows/ci.yml)\n\n---\n\n## Credentials\n\n- CySA+ certified · Splunk Core User\n- TryHackMe top 1% · 120+ rooms · SOC, SIEM, EDR, Splunk, Wireshark, phishing analysis, Linux, network defense · [Profile](https://tryhackme.com/p/srkyn)\n- OWASP and ISC2 community member\n\n---\n\n## Featured Work\n\n| Project | Focus | Artifact |\n|---|---|---|\n| [STIGPilot](https://github.com/srkyn/stigpilot) | DISA STIG change triage, remediation backlog generation, evidence checklists, ticket-ready exports, PowerShell government mode | [Chrome demo](https://github.com/srkyn/stigpilot#real-world-chrome-demo) |\n| [IdentityRiskGraph](https://github.com/srkyn/IdentityRiskGraph) | CloudTrail IAM event detection, nested access path resolution, MITRE-mapped findings, Streamlit investigation dashboard | [Screenshots](https://github.com/srkyn/IdentityRiskGraph/tree/main/screenshots) |\n| [Splunk Detection Content](https://github.com/srkyn/splunk-detection-content) | SPL detections mapped to MITRE ATT\u0026CK with tuning notes, false-positive paths, and triage playbooks | [Playbooks](https://github.com/srkyn/splunk-detection-content/tree/main/playbooks) |\n| [lapse](https://github.com/srkyn/lapse) | Entra ID stale-device review using interactive sign-in evidence to eliminate false positives from background sync | [Demo](https://github.com/srkyn/lapse/blob/main/docs/demo.md) |\n| [relic](https://github.com/srkyn/relic) | Active Directory hygiene review for stale users, service accounts, disabled-but-still-membered accounts, and non-expiring passwords | [Demo](https://github.com/srkyn/relic/blob/main/docs/demo.md) |\n| [ai-lms-security-case-study](https://github.com/srkyn/ai-lms-security-case-study) | Authorized assessment case study: access boundaries, control review, remediation paths, and redaction discipline | [Control matrix](https://github.com/srkyn/ai-lms-security-case-study/blob/main/docs/control-matrix.md) |\n| [undertaker](https://github.com/srkyn/undertaker) | Read-only scheduled task auditor for cron, systemd timers, and Windows Scheduled Tasks | [Demo](https://github.com/srkyn/undertaker/blob/main/docs/demo.md) |\n| [browser-bailiff](https://github.com/srkyn/browser-bailiff) | Browser extension permission, host access, age, and review-reason auditor for Chrome, Edge, and Firefox | [Demo](https://github.com/srkyn/browser-bailiff/blob/main/docs/demo.md) |\n| [home-network-security](https://github.com/srkyn/home-network-security) | Sanitized OPNsense and Proxmox home network security control plane: firewall policy, DNS security, CrowdSec, logs, canary alerts | [Design rationale](https://github.com/srkyn/home-network-security/blob/main/docs/design-rationale.md) |\n\n---\n\n## What the tools cover together\n\nSTIGPilot handles compliance change triage. lapse and relic handle identity hygiene across Entra ID and on-premises Active Directory. IdentityRiskGraph and splunk-detection-content handle detection logic and SOC investigation workflows. undertaker and browser-bailiff handle scheduled job and browser extension risk review. home-network-security documents a production-style OPNsense and Proxmox home network security control plane.\n\n---\n\n## Contact\n\nWebsite: [srkyn.com](https://srkyn.com/)\nEmail: contact [at] srkyn.com\nLinkedIn: [linkedin.com/in/srkyn](https://www.linkedin.com/in/srkyn/)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsrkyn%2Fsrkyn","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsrkyn%2Fsrkyn","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsrkyn%2Fsrkyn/lists"}