Drapeau Angleterre
Drapeau Francais
Hello World,
I am a Cybersecurity Analyst fascinated by IT and its security issues. With a strong passion for technology, I like to take on problems to respond to current challenges in cybersecurity.

Cyber Threat Intelligence (CTI)

Specialized in Cyber Threat Intelligence (CTI), with experience in collecting, analyzing, and interpreting threat data from various sources. Proficient in identifying Indicators of Compromise (IoCs), tracking Advanced Persistent Threats (APTs), and producing actionable intelligence to mitigate cyber risks.

Open Source Intelligence (OSINT)

Expert in leveraging Open Source Intelligence (OSINT) methodologies to uncover actionable insights from public sources, including the clearnet, dark web, and social media. Skilled in using OSINT tools and techniques to identify potential threats, vulnerabilities, and malicious actors.

Penetration Testing

Trained penetration tester with hands-on experience in simulating real-world attacks to identify vulnerabilities in networks, systems, and web applications. Proficient in both manual testing and using automated tools to conduct vulnerability assessments and deliver comprehensive security reports.

Secure Software Development

Experienced in designing and developing large-scale security tools and automating intelligence-gathering processes. Skilled in secure coding practices, building custom threat detection systems, and integrating cybersecurity solutions across various platforms.

Bisrat Kura

@

followers

following

repos

<ABOUT/>

Bisrat is a dedicated Cybersecurity Analyst with a passion for uncovering and combatting digital threats. Specialized in Cyber Threat Intelligence (CTI), Bisrat excels in collecting and analyzing intelligence data from a wide range of online sources, including the DarkNet, DeepWeb, OSINT, and Malware, to pinpoint emerging security risks and vulnerabilities. Bisrat has a proven track record in automating intelligence processes and developing innovative solutions. He is looking forward to opportunities to contribute his expertise to CTI teams.

In addition to his work, Bisrat is dedicated to staying updated on industry trends, emerging technologies, and evolving threats through a combination of attending cybersecurity conferences and continuous learning via self-study.

Interests

  • Threat Intelligencence
  • Incident Response
  • Data Privacy
  • Open Source Intelligernce

Education

Master's degree, Cybersecurity and Threat IntelligenceUniversity of GuelphSept 2024 - 2025
Bachelor of Science, Computer ScienceBeijing Institute of TechnologySept 2017 - June 2021

<PROJECTS />

1 Year | Group Project

Threat Intelligence Platform

Developed the backend of a sophisticated threat intelligence platform. The dashboard offers unprecedented visibility and analytical capabilities, enabling clients real-time identification of compromised data from various sources.

Security
Reactjs
Next.Js
TypeScript
Node.js
MongoDB
Python
Opensearch
Docker
AWS
Created on: 01/05/2023
1 Year | Solo

Stolen Credentials Parsers Project

Developed various parsers for parsing specific types of combolist files published by threat actors. These parsers were designed to handle different combolist formats, facilitating efficient and secure storage.

Security
Python
Rust
Mysql
Git
AWS
Docker
Created on: 20/04/2023
3 Weeks | Solo

Downloader Data Toolkit

In three weeks, I built a toolkit where i developed an automatic intelligence data downloader, extractor, and ingestion module from threat actor-managed Telegram channels. The toolkit has many features such us realtime monitoring of threat actor channels to downwload new intellegince data from their communication etc.

Security
Reactjs
Next.Js
TypeScript
Node.js
MongoDB
Python
Opensearch
Docker
AWS
Created on: 01/08/2023
1 Year | Solo

InfoStealer Log Parsers

This project is a comprehensive system for parsing various info stealer malware log formats. It analyzes logs of stealer malwares and extract intellegince data from them and sending intelligence data to designated endpoints for utilization in a CTI platform.

Security
Python
Rust
Mysql
Git
AWS
Docker
Created on: 01/09/2023
3 Weeks | Solo

Secure File Transfer Project

Client-Server application, written in C++, that resembles a Cloud Storage. In this project all the security protocols (for authentication and data transmission) have been designed specifically for this project and have been implemented using OpenSSL. Each user has a “dedicated storage” on the server, and User A cannot access User B dedicated storage. Users can Upload, Download, Rename, or Delete data to/from the Cloud Storage in a safe manner.

Security
CPlusPlus
C
Created on: 01/04/2022
2 Months | Solo

Tiny Encryption and Decryption Algorithm Project

Implemented the Tiny Encryption Algorithm (TEA), both encryption and decryption modules performing logic design, circuit design, and physical design processes using Hardware Description Language (HDL), and tested the performance.

Security
Python
Rust
Mysql
Git
AWS
Docker
Created on: 01/03/2022
2 Weeks | Solo

Trojan Horse Project

Developed a Trojan horse malware that is capable of taking a screenshot of users keystrokes and sends the screenshots a remote storage.

Security
Python
Created on: 01/11/2021
3 Weeks | Solo

Watchdog Project

Watchdog project is a Python program designed to monitor any command and restart it if necessary. It provides a simple and flexible solution for ensuring the continuous execution of critical commands or processes.

Security
Python
Rust
Git
Docker
Created on: 05/07/2023
5 Months | Solo

Forum Scraper

This project is a custom-built tool designed to scrape and analyze online forums, focusing on extracting valuable threat intelligence from both open and dark web sources. The tool automates the process of gathering posts, comments, and metadata related to cybersecurity threats.

Security
Python
Rust
Created on: 11/06/2023
1 Weeek | Solo

Advanced Persistent Threat (APT) Malware Detection

Extracted opcodes of malwares from different APT groups and analyzed using GHIDRA and IDA Pro, Pre-processed malware OpCodes. Implemented feature engineering using n-gram counts and PCA; applied SVM, KNN (k=3.5), Decision Tree, and Random Forest models. Achieved high accuracy and F1 scores; evaluated models using key metrics

Security
Python
Scikit-learn
GHIDRA
Created on: 01/11/2024

<EXPERIENCES />

eSentire Logo

eSentire

May 2025 - Aug 2025Waterloo, Canada

Threat Intelligence Analyst

Internship
  • Working on projects related to Adaptive ML-Driven Detection of Scheduled Task Anomalies and Automated Threat Attribution.
Mitacs Logo

Mitacs

May 2025 - Aug 2025Waterloo, Canada

Mitacs Accelerate Research Internship

Internship
  • Research Internship
University of Guelph Logo

University of Guelph

Sep 2024 - Sep 2025Guelph, Canada

Student

Full-time
  • CIS*6510 - Cybersecurity and Defense in Depth
  • CIS*6520 - Advanced Digital Forensics and Incident Response
  • CIS*6530 - Cyber Threat Intelligence and Adversarial Risk Analysis
  • CIS*6540 - Advanced Penetration Testing and Exploit Development
  • CIS*6550 - Privacy, Compliance, and Human Aspects of Cybersecurity
  • CIS*6580 - Security Monitoring and Cyber Threat Hunting
  • CIS*6590 - Professional Seminar in Cybersecurity
  • CIS*6560 - Cybersecurity Project
Defenda Solutions Logo

Defenda Solutions

Mar 2023 - Sep 2024Lucca, Italy · On-site

Cybersecurity Analyst

Full-time
  • Led the design and development of innovative cybersecurity solutions tailored to clients' specific needs and enhanced our cyber threat intelligence platform.
  • Conducted comprehensive threat intelligence analysis, incident response, and security monitoring.
  • Automated the real-time collection of data from diverse dark web sources, enhancing proactive threat detection.
  • Engineered parsers for extracting intelligence data from threat actors’ communications on Telegram.
University of Pisa Logo

University of Pisa

2021 - 2022Pisa, Italy

Student

Full-time
Beijing Institute of Technology Logo

Beijing Institute of Technology

2017 - 2021Beijing, China

Student

Full-time
  • Science and Technology Club, Athletics Club

<CERTIFICATES AND AWARDS />

Cisco Logo

Cisco Certified Network Associate (CCNA)

Cisco · Oct 2020

See certificate
Beijing Institute of Technology Logo

Excellent Student Award

Beijing Institute of Technology · Dec 2018

See certificate
Beijing Institute of Technology Logo

Beijing Government Scholarship

Beijing Institute of Technology · Sep 2017

See certificate
Coursera Logo

Cryptography I

Coursera · Nov 2020

See certificate
University of Pisa Logo

Italian Government Scholarship

University of Pisa · Oct 2021

See certificate
Recorded Future Logo

Intelligence Fundamentals

Recorded Future · Jul 2024

See certificate

Blog Posts

My First Post

March 13, 2025

This is a summary of my first blog post.

Cybersecurity Trends 2025

March 10, 2025

A look at upcoming cybersecurity trends this year.