siem-simulator

SIEM Simulator - SOC Analyst Training Platform

Interactive browser-based SIEM simulator with 100 progressive challenges across 5 difficulty levels. https://irfanm46.github.io/siem-simulator/

Features

100 Challenges across 5 difficulty levels (Beginner → Master)
Complete Workbook with all solutions and explanations
4-Day Mastery Plan structured learning path
MITRE ATT&CK Mapping for every challenge
Progress Tracking saves your completion status
Offline First - single HTML file, no dependencies

Challenge Categories

Level 1: Beginner (1-20)

Basic log filtering, authentication analysis, firewall logs, malware detection

Level 2: Intermediate (21-40)

Pattern detection, brute force attacks, lateral movement, data exfiltration

Level 3: Advanced (41-60)

Threat hunting, APT reconnaissance, multi-stage attack analysis

Level 4: Expert (61-80)

Incident response, timeline reconstruction, evidence collection

Level 5: Master (81-100)

Advanced persistent threats, supply chain attacks, insider threats

Skills Trained

SIEM query writing (Splunk/QRadar)
Log analysis (Windows Event, Firewall, Proxy, DNS, EDR)
Attack pattern detection
MITRE ATT&CK framework mapping
Incident response workflows
Threat hunting methodologies

Usage

Open siem-simulator.html in your browser
Select a challenge from the sidebar
Analyze the security logs
Write a query to find the answer
Submit to validate your solution
Use the Workbook if you get stuck

4-Day Learning Path

Day 1: Challenges 1-25 (Foundation)
Day 2: Challenges 26-50 (Pattern Detection)
Day 3: Challenges 51-75 (Threat Hunting)
Day 4: Challenges 76-100 (Master Level)

SOC Analyst Relevance

Every challenge maps to real SOC L1/L2 analyst responsibilities:

Authentication monitoring
Firewall log analysis
Malware triage
Lateral movement detection
Data exfiltration analysis
Incident response procedures
Threat intelligence application

Built for practicing hands-on SOC skills targeting entry-level analyst roles at security companies.

Tech Stack

Pure HTML/CSS/JavaScri