Projects

Header

Name

projects - security engineering work that solves actual operational problems

Description

Short list of the larger things I have built or contributed to. Some are labs, some are automation systems, and some are just me refusing to accept that the default workflow has to suck.

Disclaimer: some of these are corporate/proprietary projects. I am not sharing internal code, architecture, client data, private workflows, or anything that would get me fired. I get paid to work on these things and fund my bad life choices, so use this page as a high-level summary only.

Proprietary Shit

AgentSoC

Autonomous SOC platform integrating Wazuh, TheHive, Shuffle, and MinIO-based ETL pipelines.

Built to automate alert triage, enrichment, compliance validation, evidence gathering, and reporting across AWS, Azure, endpoints, and Cisco Meraki environments.

LETA

Lightweight endpoint telemetry agent written in Rust.

Built to collect security-relevant telemetry across macOS, Linux, and Windows without dragging a heavy agent stack into every machine.

AI-Assisted Red Teaming & Security Automation

Modular red teaming workflows using LangGraph, FastMCP, and n8n.

Built to make reconnaissance, vulnerability enumeration, exploit simulation, and human-in-the-loop security testing repeatable instead of a pile of one-off scripts.

Security Analytics & Data Platform

Security data workflows using MinIO, Spark, MageAI, Delta Lake, and Superset.

Built to support Bronze/Silver/Gold style pipelines for analytics, compliance dashboards, and operational reporting.

On-Prem SOC & Infrastructure

Self-hosted infrastructure and SOC lab built around Linux, Wazuh, Docker, QEMU/KVM, centralized logging, endpoint telemetry, firewall logs, and network monitoring.

Built because local infrastructure teaches the parts cloud dashboards hide, and because security tooling should still work when the budget is not enterprise.

Open Source

OpenSOC

Open-source SOC lab and security operations blueprint for constrained hardware.

Built with Debian, QEMU/KVM, Wazuh, auditd, osquery, FleetDM OSS, and Docker Compose to test Linux-focused SIEM, IDS, SOAR, telemetry, and detection engineering workflows.

DOOMSDAY_SYSTEM

Unified repo for configs, scripts, dotfiles, vdwm, StealthStreamTerminal, and other system setup glue.

Built because my machine setup is not one file, and keeping the moving pieces in one place makes rebuilds less painful.

LIGMA_TOOLKIT

Repository of useful commands, scripts, and small tools for security, network, IT, admin, and other ops work.

Built because quick work needs quick scripts, and I do not want to rewrite the same boring helper commands every time something catches fire.

Repo link pending.

SimplePass

Python password manager backed by MariaDB.

Built as a small password storage project while learning how to wire simple tools around a database.

More GitHub Stuff

The rest of my public code lives on github.com/iamb4uc.

Not everything needs a paragraph here. Some of it is old class work, experiments, wallpapers, colorschemes, course projects, and small utilities.

See Also

resume(1), github(1), posts(1)