Active writing and systems engineering work that I want easy to find from the top of the profile.
|
|
A practical field guide for systems engineering, operational thinking, documentation, and building dependable mission-focused systems.
|
Product-style repositories with demos, architecture, and deployable workflows.
|
End-to-end vulnerability management workflows for continuous scanning, risk prioritization, and remediation tracking.
|
Hands-on SOC investigation workflows for importing and exporting case data with practical triage and analysis patterns.
|
|
Threat-intelligence style project focused on broker ecosystem analysis and investigative workflows.
|
Practical threat-hunting playbooks and detection engineering workflows for SOC-style investigations.
|
|
Self-contained OCR + offline translation engine built for field use and disconnected environments.
|
3D model inspection platform for surgical / medical STL/OBJ workflows with desktop + web engines.
|
A published threat hunt focused on buyer-themed intrusion patterns, investigative logic, and repeatable analyst workflows.
|
I build secure, intelligent, mission-critical systems designed to operate in real-world environments.
From DoD simulation platforms to offline AI translation engines, my work blends:
- π‘ Cybersecurity & Compliance
- π§ AI / LLM Systems
- π₯ Desktop & 3D Visualization Applications
- βοΈ Infrastructure Automation
- π Zero-Trust Architectures
I'm passionate about cybersecurity and enjoy solving complex, real-world security challenges through hands-on projects.
My work spans vulnerability management, threat detection, and security operationsβfocused on practical impact, not theory.
Self-contained OCR + AI translation platform with embedded Python and local model hosting.
Highlights
- Argos + Marian NMT support
- Embedded Tesseract OCR
- Offline model hosting
- Local API services
- WPF + Python hybrid architecture
- Secure background service orchestration
HelixToolkit + Three.js 3D model inspection and surgical analysis platform.
Highlights
- STL / OBJ 3D rendering
- Desktop (WPF) + Web (Three.js) dual engine
- Camera control + mesh inspection
- Precision zoom + lighting control
- Clean dark-mode surgical UI
Medical 3D Simulator (SurgicalVisualization)
3D medical visualization and simulation project focused on surgical anatomy exploration and training.
- KQL investigations
- Log correlation
- SIEM analytics
- Incident triage workflows
- Detection engineering
- SOC data import/export analysis workflows
π Example Repository:
https://github.com/brianhannigan/kql-threathunting-beginner-guide
π SOC Investigation Import/Export Repository:
https://github.com/brianhannigan/soc-investigation-azuki-import-export
- Nessus scanning
- DISA STIG remediation
- Patch validation
- Secure configuration baselines
- Risk tracking & documentation
- Docker-based service orchestration
- QEMU + Ubuntu VM automation
- Offline deployment packaging
- Embedded Python distribution
- Windows service wrappers
- Local API hosting
- Structured logging systems
I design systems using layered separation of concerns:
User Interface Layer
β
Application Logic Layer
β
Service Orchestration Layer
β
Isolated Engine Layer
β
Secure Local or Remote Models
β Offline-first when possible
β Zero-trust boundaries
β Clear separation of concerns
β Reproducible deployment
β Deterministic startup & logging
β Secure configuration management
Each major repository is structured like a product launch, not just a code dump.
Includes:
- Animated SVG workflows
- UI state transitions
- Before/after visual demos
- Architecture diagrams
- Installation walkthroughs
- Clean documentation hierarchy
My goal is not just to build software β
but to build deployable systems with clarity and confidence.
- C#
- Python
- JavaScript / TypeScript
- PowerShell
- SQL
- .NET / WPF
- HelixToolkit
- Three.js
- Docker
- Argos Translate
- Marian NMT
- Tesseract OCR
- QEMU
- GitHub Actions
- Advanced AI model orchestration
- Self-contained deployable systems
- Offline enterprise AI tooling
- Intelligent threat analysis
- 3D visualization engines
- Zero-trust application design
- Hybrid desktop + web architectures
- 14+ years supporting Government projects
- Mission-critical system development
- Secure enterprise deployments
- Cybersecurity engineering
- Technical architecture & leadership
- AI-powered application design
LinkedIn: https://www.linkedin.com/in/brianhannigan/
GitHub: https://github.com/brianhannigan
This is not a collection of school projects.
This is a working laboratory of:
- Deployable AI systems
- Production-grade architectures
- Secure engineering practices
- Real-world infrastructure tooling
- Advanced visualization engines
I build systems that are:
I focus on practical, operations-ready security work: alert triage, vulnerability scanning, secure configuration, and clear client-facing reporting.
-
π Vulnerability Management Program Implementation
End-to-end vulnerability management workflow covering discovery, prioritization, remediation, and reporting. -
π οΈ Programmatic Vulnerability Remediations (PowerShell & Bash)
Automated remediation scripts for common security findings across Windows and Linux environments.
-
πΎπ Threat Hunting Scenario - CloutHaus
Phishing β Mailbox Compromise β Exfiltration (KQL Case Study) -
π΅οΈ Threat Hunting Scenario β TOR Browser Usage
Detection and investigation of anonymization tools within enterprise environments using realistic SOC workflows. -
π€ Automated Incident Tracking
Streamlined incident intake and tracking to support SOC reporting and response workflows. -
π΅οΈ SOC Agent Lab
Autonomous AI agents for SOC alert triage, detection engineering, and log intelligence. -
π SIEM Engineering Lab
Detection engineering and log-analysis workflows for practical SOC operations. -
π°οΈ Secure Infrastructure Observability Lab
Security-focused observability pipelines for resilient and monitorable infrastructure. -
β Compliance Automation Toolkit Lab
Automation-driven compliance checks and reporting to reduce manual security overhead.
-
Lightweight Finetuning Foundation Models
Apply parameter-efficient fine-tuning (PEFT) to adapt a pretrained Hugging Face model for a text classification task, then compare baseline and fine-tuned performance.
C#
- ** Screen Sender
- **
Python
- ** XML Parser
- ** UpWork Auto-Scraper & AI Proposal Generator**
Powershell
- ** Project Creator
Full Stack React
- SOC Operations: alert triage, incident documentation, escalation workflows
- Vulnerability Management: Nessus scanning, findings documentation, remediation tracking
- Compliance & Hardening: DISA STIG-aligned secure configuration (Windows/Linux fundamentals)
- Security Awareness: phishing/social engineering readiness, training & reporting
- Tooling: Git, VMware, Docker, scripting (Python/PowerShell/Bash)
- Clean documentation (SOPs/runbooks) that makes security repeatable
- Signal-over-noise mindset for tuning and validating alerts
- Customer-ready status updates and summaries that drive action
- πΌ LinkedIn: https://www.linkedin.com/in/brianhannigan/
- π§ GitHub: https://github.com/brianhannigan
π Focused on building secure, resilient systems and training the next generation of engineers and defenders.
Focused Areas: β’ SIEM Engineering & Log Analysis β’ Infrastructure Observability β’ Secure Configuration (STIG/Nessus) β’ Security Automation (Python/Bash) β’ Threat Detection Workflows