Projects
Labs, tools, CTF runs, research, and builds — a running portfolio of work.
-
Completed LabAI Threat Intel Agent — Part 2: Stack Awareness
Teaching DANEEL what's actually installed. Part 2 adds automated Mac inventory collection, version-aware CVE matching, zero-day detection, and smart email logic that only fires when there is something actionable.
PythonNVD APICISA KEVAI Agents +4 -
Completed LabAI Threat Intel Agent — Part 1: Building DANEEL
Building DANEEL: a self-hosted threat intelligence agent that pulls daily CVE data from NVD, cross-references CISA's known-exploited catalog, reasons over the results with a local LLM, and delivers a written briefing by email every morning. Deployed on a dedicated Proxmox LXC on a daily cron schedule.
PythonNVD APICISA KEVAI Agents +5 -
Completed LabEndpoint Security Lab: Wazuh + Intune
Built a two-layer endpoint security environment on a Proxmox homelab — Wazuh SIEM for detection and visibility, Microsoft Intune for compliance enforcement. A fresh Windows 11 VM scored 26% on CIS benchmarks out of the box.
WazuhMicrosoft IntuneEntra IDWindows 11 +5 -
Completed LabGPU-Accelerated Hash Cracking Station
Built a dedicated hash cracking VM with PCIe passthrough on Proxmox — IOMMU configuration, vfio-pci kernel binding, and RTX 2080 Ti passthrough to an isolated Ubuntu VM running Hashcat.
ProxmoxLinuxIOMMUPCIe Passthrough +3 -
Completed LabSysReptor on Proxmox LXC
Deployed SysReptor in a Docker-inside-LXC container on Proxmox — lightweight dedicated reporting environment with persistent storage, accessible from anywhere on the lab network.
ProxmoxLXCDockerDocker Compose +3 -
In Progress ResearchCPTS Pentest Methodology
Why the standard pentest lifecycle format didn't work for me during the CPTS exam — and what I built instead.
Penetration TestingActive DirectoryWeb AppReporting +1Live -
In Progress SiteArchwarden — Security Portfolio Site
A self-built security portfolio site for writeups, methodology docs, and project work — designed to be accessible to people learning the field, not just to impress other hackers.
AstroTypeScriptTailwind CSSCloudflare PagesLive