About

I'm Sivabalan Chandra Sekaran, a cybersecurity researcher focused on understanding how modern adversaries operate within enterprise environments — from initial access through persistence, credential abuse, and defense evasion.

My work spans offensive technique analysis, memory forensics, and translating research findings into actionable detection content. I believe the best security outcomes emerge when offensive research and defensive engineering collaborate through structured purple team exercises.

Previously, I've worked across threat research, incident response, and detection engineering roles. I publish technical write-ups, open-source tooling, and speak at security conferences on topics including Active Directory attacks, malware analysis, and Windows internals.

Skills

Reverse EngineeringMalware AnalysisActive Directory SecurityMemory ForensicsDetection EngineeringYARA / Sigma RulesWindows InternalsCloud Security (AWS/Azure)Python / RustVolatility / IDA Pro / Ghidra

Research Interests

  • Offensive security research and responsible disclosure
  • Enterprise identity and authentication attacks
  • Memory-resident malware and anti-forensics techniques
  • Building high-fidelity detection content for SOC teams
  • Purple team exercises and control validation

Timeline

2024 — Present

Senior Security Researcher

Independent / Consulting

2024 — Present

Publishing research on Windows abuse primitives, AD attack paths, and detection engineering.

2021 — 2024

Threat Research Engineer

Enterprise Security Vendor

2021 — 2024

Developed YARA rulesets, analyzed APT campaigns, and contributed to EDR detection logic.

2018 — 2021

Security Analyst

Financial Services

2018 — 2021

Incident response, memory forensics, and purple team operations in a regulated environment.

Certifications

OSCP

Offensive Security

2022

CRTO

Zero-Point Security

2023

GCFA

SANS

2024

AZ-500

Microsoft

2024