// ls -la projects/

Projects

Security tools, infrastructure automation, and CTF utilities. Most of these came from a real need — or a rabbit hole at 2am.

security

SecureScan — Web Vulnerability Scanner

A fast, concurrent web vulnerability scanner built in Python. Detects XSS, SQLi, SSRF, open redirects, and misconfigured headers. Pluggable architecture for custom payloads.

PythonasyncioaiohttpClickSecurity

devops

k8s-hardener — Kubernetes Security Auditor

CLI tool that audits Kubernetes clusters against CIS benchmarks. Checks RBAC misconfiguration, pod security policies, network policies, and exposed secrets. Outputs JSON/HTML reports.

GoKubernetesCISRBACDevSecOps

cloud

ThreatIntel Pipeline — IOC Aggregator

Automated threat intelligence pipeline that ingests IOCs from MISP, OTX, and Shodan, correlates them, and pushes alerts to Slack and PagerDuty. Runs on AWS Lambda + EventBridge.

PythonAWS LambdaMISPTerraformSecurity

ctf

CTF-Toolkit — Automation Framework

Personal CTF automation framework with scripts for steganography, crypto challenges, binary exploitation, and web hacking. Includes a Docker-based challenge environment.

PythonDockerpwntoolsCryptographyCTF

cloud

CloudGuard — IaC Security Linter

Lints Terraform and CloudFormation templates for security misconfigurations before deployment. Integrates with GitHub Actions for shift-left security in CI/CD pipelines.

PythonTerraformCloudFormationGitHub ActionsIaC

security

LogHunter — SIEM Log Analyzer

Real-time log analysis engine that parses syslog, nginx, and cloud trail logs for anomalies and IOCs. Ships with pre-built detection rules inspired by Sigma.

PythonElasticsearchSigmaGrafanaSIEM