Production Big Data · Threat Intel
Security Data Lake Platform
Databricks-Powered Threat Intelligence Search Dashboard
Web-based threat intelligence search platform built on Databricks that queries large-scale security telemetry in real time. Features a FastAPI REST backend, an interactive web dashboard, and MCP-connected analyst tools for searching IP addresses, file hashes, domains, URLs, email indicators, detections, and event prevalence across multiple security datasets.
Impact
Reduced IOC investigation from lengthy manual queries across disconnected datasets to near-instant lookup across a unified security data lake
Technology Stack
PythonDatabricksFastAPISQLMCP SDKREST API