Threat-informed defense

Find the signal.
Preserve the proof.

SecurityQ connects threat hunting, digital forensics, cloud identity, and AI-assisted defense to support evidence-driven decisions.

  • MITRE ATT&CK
  • Microsoft 365/XDR
  • Security Onion
  • AI Security

Engineering clarity from complex telemetry.

I'm Quenton “SecurityQ” Carr, a Cybersecurity Engineer and Threat Hunter focused on threat-informed, AI-driven defense.

I build hands-on labs with Proxmox, Security Onion, and Wazuh; automate investigations with Python; and connect signals across endpoint, identity, memory, and network telemetry.

  • CISA VIRT (Region 6)
  • Entra ID / Azure Security
  • SIEM engineering & detections
  • OSINT & DFIR packaging

Built for the investigation lifecycle.

01

Threat Hunting

Hypothesis-driven hunts using ATT&CK, Sigma, KQL, and Zeek/Suricata telemetry.

02

DFIR & Automation

IOC triage, forensic timelines, repeatable collection, and evidence packaging with hash manifests.

03

Cloud & Identity

Microsoft 365/XDR, Entra ID P2, Conditional Access, and Defender for Cloud.

04

AI for Security

LLM-assisted playbooks, CUDA-accelerated workflows, and model guardrail testing.

Systems that turn evidence into action.

DFIR Automation

SilentQ DFIR

Automated evidence collection and timeline building with legally defensible packaging and hash manifests.

Python · KQL · Sigma · Timeline

View on GitHub

AI Security

AI GuardRail Lab

A controlled environment for prompt-injection testing, OSINT enrichment, and policy-based red teaming.

Supabase · Next.js · OpenAI

View on GitHub

Detection Engineering

Home SOC

A Proxmox-based Security Onion and Wazuh lab with SPAN telemetry and GPU-assisted inference.

Proxmox · Zeek/Suricata · ELK

View on GitHub

Cyber defense built from the evidence outward.

Threat hunting, DFIR, SOC engineering, cloud identity, and secure infrastructure.

Download résumé

Let’s connect the signals.

For opportunities, collaborations, and speaking requests.

Email SecurityQ