Hi there! π My name is Shawn Lynch, aka ShaoLyn68SOC. I'm a former truck driver whose life took a sharp turn due to a serious illness. That challenge became a catalyst for transformation, and today I'm training to become a Security Operations Center (SOC) Analyst. Iβve traded highways for networks, and now Iβm focused on defending digital infrastructure from cyber threats.
After facing a life-threatening illness, I wanted to find a new mission β one that protects others and gives me purpose. Cybersecurity is that mission. Itβs a field where vigilance, grit, and curiosity matter β and I bring all three from my past life on the road.
I write about my transition from trucking to cybersecurity, lessons learned, and reflections on the SOC analyst journey. Check it out at
π shaolyn68soc.github.io
- SIEM tools: Splunk, Wazuh, and the Elastic Stack
- Threat detection & incident response
- MITRE ATT&CK Framework
- Python scripting for SOC automation
- Blue Team tactics and log analysis
I'm actively sharpening my skills through real-world simulations and labs:
- π TryHackMe Profile
- π΅οΈ Hack The Box Profile
This GitHub is my digital notebook β a place to document my growth and share tools with others on the same path. Expect:
- π‘οΈ SOC playbooks and detection rules
- π Log parsing and analysis scripts
- π SIEM dashboards and threat reports
- π§° Blue Team utilities and automation tools
Here are a few highlights from my cybersecurity journey:
A Python script that parses Windows Event Logs to identify suspicious activity patterns. Useful for SOC triage and threat hunting.
- Tools: Python, Windows Event Viewer
- Skills: Log parsing, regex, IOC detection
- Status: In progress
Designed a Splunk dashboard to visualize login anomalies, failed authentications, and privilege escalation attempts.
- Tools: Splunk, SPL
- Skills: SIEM configuration, data visualization
- Status: In progress
A reference sheet and script that maps observed behaviors to MITRE ATT&CK techniques for faster incident classification.
- Tools: Python, MITRE ATT&CK
- Skills: Threat classification, SOC workflow optimization
- Status: Ongoing
Documented walkthroughs and detection strategies from Blue Team labs and SOC simulations.
- Platforms: TryHackMe, Hack The Box
- Skills: Threat detection, incident response
- Status: Continuously updated
βYou donβt need to see the whole road β just take the next turn.β
β A former truck driver turned cybersecurity SOC analyst