Skip to content
View Masriyan's full-sized avatar
:octocat:
I may be slow to respond.
:octocat:
I may be slow to respond.
24 followers · 23 following

Achievements

Achievement: StarstruckAchievement: Quickdraw

Achievements

Achievement: StarstruckAchievement: Quickdraw

Block or report Masriyan

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Masriyan/README.md

👋 Hi, I'm Riyan Pratama

Cybersecurity professional specializing in SOC leadership, threat hunting, cyber threat intelligence, and attack surface management. I build efficient, intelligence-driven security operations that go beyond alert monitoring to deliver real-world threat mitigation.

"Cybersecurity is more than tools — it's a strategy."

🌐 Connect with Me

LinkedIn Medium Bluesky X Discord YouTube email

🛡️ Expertise

  • Threat Hunting & Incident Analysis — Identify hidden threats and attacker behavior before incidents escalate
  • SOC Strategy & Development — Design efficient SOC frameworks to improve detection, response, and operations
  • Cyber Threat Intelligence & OSINT — Turn intelligence into actionable insights for decisions and adversary tracking
  • Cloud Security & Attack Surface Management — Secure cloud environments, reduce misconfigurations, minimize exposure
  • Security Automation & Process Optimization — Use automation and analytics to boost efficiency and reduce false positives

💻 Tech Stack

Languages

Python PHP JavaScript Go Lua PowerShell Dart

Frameworks & Libraries

Flask FastAPI Laravel Express.js NodeJS TailwindCSS Alpine.js jQuery Chart.js WordPress

Infrastructure & DevOps

AWS Google Cloud Cloudflare Kubernetes Ansible Vagrant Nginx Apache

Security & Monitoring

ElasticSearch Grafana SonarQube Bitwarden

Tools & Platforms

Git GitHub Notion Confluence

Data Science & ML

PyTorch scikit-learn Scipy Matplotlib

Design

Blender Canva Sketch

🧭 Open-Source Projects

Project Description
MacFIRE macOS DFIR collection & imaging toolkit: timeline, memory, rootkit checks, HTML reporting
Aegis Windows-friendly single-file Python web app for URL recon, OSINT enrichment, subdomain intel
ExpertXSS Python XSS scanner that fetches the latest payloads automatically
ExpertRecon Recon & exploitation helper integrating multi-tech discovery and third-party APIs
No-Secret-Scan Find exposed secrets / hard-coded credentials in web pages
No-Secret-Scan for GitHub/GitLab Scan repos for API keys and tokens across history
uclsoc_code Curated SIEM detection logic library mapped by domain & framework
Kalitellingence One-shot Kali setup for Threat Intel & dark-web workflows

📈 Workflow Diagrams

Threat Hunting Workflow

flowchart TD
  A["Collect Signals"] --> B["Enrich: WHOIS · OSINT · VT · Shodan"]
  B --> C["Detect and Correlate: SIEM rules · UEBA"]
  C --> D{"Suspicious"}
  D -- "Yes" --> E["Hunt Loop: pivot → query → timeline"]
  D -- "No"  --> H["Autoclose and Tune Rules"]
  E --> F["Triage and Contain"]
  F --> G["Incident Response: Mitigate and Eradicate"]
  G --> I["Lessons Learned"]
  I --> J["Automate: SOAR XSOAR · scripts"]
  J --> C
Loading

Repo Ecosystem

flowchart LR
  Me(("Riyan Pratama"))
  Me --> MacFIRE["MacFIRE"]
  Me --> ExpertXSS["ExpertXSS"]
  Me --> ExpertRecon["ExpertRecon"]
  Me --> Aegis["Aegis"]
  Me --> NSS["No Secret Scan"]
  Me --> NSSGL["No Secret Scan GitHub GitLab"]
  Me --> UCLS["uclsoc_code"]

  Me -.-> PY["Python"]
  Me -.-> PHP["PHP"]
  Me -.-> JS["JavaScript"]
  Me -.-> TW["Tailwind CSS"]

  MacFIRE --> PY
  ExpertXSS --> PY
  ExpertRecon --> PY
  Aegis --> PY
  Aegis --> JS
  NSS --> JS
  NSSGL --> JS
  UCLS --> PY
Loading

📌 Pinned Repositories

📊 GitHub Stats

GitHub stats Top languages
GitHub streak

🏆 GitHub Trophies

Trophies

🔧 Skills Overview

🔐 Security          ██████████████████████░░   90%
🕵️ Threat Hunting    ██████████████████████░░   90%
🛡️ SIEM              █████████████████████░░░   85%
🔍 OSINT             ████████████████████░░░░   80%
🧪 Incident Response █████████████████████░░░   85%
🖥️ Network Security  ████████████████████░░░░   80%

👨‍🌾 Fun Facts

  • Owner of Wedusku Farm (goat farmer 🐐)
  • Expert in ngarit (traditional grass cutting for animal feed)
  • I build security solutions while nurturing my farm

💰 Support My Work

PayPal

Profile views

Thanks for visiting! 🙌

Pinned Loading

  1. MacFIRE MacFIRE Public

    MacFIRE – (Mac Forensic Investigation & Response Engine)

    Python 6 1

  2. ExpertXSS ExpertXSS Public

    The ExpertXSS is a Python-based penetration testing tool designed to check for Cross-Site Scripting (XSS) vulnerabilities on web applications. It automatically fetches the latest payloads.

    Python 3

  3. ExpertRecon ExpertRecon Public

    ExpertRecon is a powerful reconnaissance and exploitation tool designed for security professionals and ethical hackers. It integrates various reconnaissance techniques and third-party APIs to ident…

    Python 3

  4. No-Secret-Scan- No-Secret-Scan- Public

    "No Secret Scan" is a Python script designed to detect and identify secrets and hardcoded credentials within web pages, enhancing security audits by automating the discovery of potentially sensitiv…

    Python 1

  5. No-Secret-Scan-Github-Gitlab No-Secret-Scan-Github-Gitlab Public

    No Secret Scan is a Python tool designed to help developers scan their GitHub and GitLab repositories for potential secrets like API keys, tokens, and passwords. With customizable secret patterns, …

    Python 1 1

  6. uclsoc_code uclsoc_code Public

    list of use case library for CSOC

    5