Projects

Header

Name

projects - security engineering work that solves actual operational problems not some AI B2B SaaS shit that every boilerplate linkedin founder/ceo is trying to do.

Description

Short list of the larger things I have built or contributed to. Some are labs, some are automation systems, and some are just me refusing to accept that the default workflow has to suck.

Disclaimer: some of these are corporate/proprietary projects. I am not sharing internal code, architecture, client data, private workflows, or anything that would get me fired. I get paid to work on these things and fund my bad life choices, so use this page as a high-level summary only.

Open Source

OpenSOC

Open-source SOC lab and security operations blueprint for constrained hardware.

Built with Debian, QEMU/KVM, Wazuh, auditd, osquery, FleetDM OSS, and Docker Compose to test Linux-focused SIEM, IDS, SOAR, telemetry, and detection engineering workflows.

DOOMSDAY_SYSTEM

Unified repo for configs, scripts, DoomDots (dotfiles), DoomWM (window manager), DoomTerm (terminal), and other system setup glue.

Built because my machine setup is not one file, and keeping the moving pieces in one place makes rebuilds less painful.

opsforge

Shell-only toolkit for SOC, NOC, Linux, Windows, IR, and ops work.

Built to keep small operational helpers in one place: quick checks, security workflows, network/admin glue, and scripts that should be easy to read before running.

More GitHub Stuff

The rest of my public code lives on github.com/iamb4uc. Planning to move everything from Microslops hands to a private git server but I need more money for cloud bills so hehe, not now.

Not everything needs a paragraph here.

Proprietary Stuff

I donot endorse these; I got paid for these; and I want to index this for other potential clients / employer

Autonomous Security Operations Center

Autonomous SOC platform integrating Wazuh, TheHive, Shuffle, and MinIO-based ETL pipelines.

Built to automate alert triage, enrichment, compliance validation, evidence gathering, and reporting across AWS, Azure, endpoints, and Cisco Meraki environments.

Lightweight Endpoint Telemetry Agent

Lightweight endpoint telemetry agent written in Rust.

Built to collect security-relevant telemetry across macOS, Linux, and Windows without dragging a heavy agent stack into every machine.

Red Teaming Agent

Modular red teaming workflows using LangGraph, FastMCP, and n8n.

Built to make reconnaissance, vulnerability enumeration, exploit simulation, and human-in-the-loop security testing repeatable instead of a pile of one-off scripts.

On-Prem SOC & Infrastructure

Self-hosted infrastructure and SOC lab built around Linux, Wazuh, Docker, QEMU/KVM, centralized logging, endpoint telemetry, firewall logs, and network monitoring.

Built because local infrastructure teaches the parts cloud dashboards hide, and because security tooling should still work when the budget is not enterprise.

See Also

resume(1), github(1), posts(1)