Technical Runbooks

Evidence-focused project documentation.

These pages are designed to evolve from project descriptions into proof artifacts: diagrams, configs, logs, screenshots, threat models, and deployment notes.

Flagshipv0.1 planning

SentinelAudit — Host Security Audit Platform

A practical auditing tool that collects host posture data from Windows and Linux endpoints and exports readable security reports.

Purpose

Demonstrate endpoint visibility, scripting, report generation, and security-minded system administration.

Security Value

Identifies risky services, exposed ports, weak configuration patterns, stale accounts, and missing evidence trails.

Stack

Python, PowerShell, Bash, JSON, SQLite, HTML reports, GitHub Actions.

Next Proof

Add screenshots, sample JSON output, terminal captures, and an architecture diagram.

Planned artifact: sample-audit-report.json

Infrastructureactive lab

VPS Operations Lab — Docker, Reverse Proxy, TLS

A self-hosted infrastructure environment for portfolio deployment, web services, DNS, proxy routing, and operational documentation.

Purpose

Show real deployment work instead of only local projects.

Security Value

TLS, Cloudflare DNS, least-exposed services, container separation, update workflows, and rollback notes.

Stack

Ubuntu, Docker, Nginx Proxy Manager, Cloudflare, GitHub, SSH.

Next Proof

Add sanitized NPM screenshots, deployment flowchart, and service inventory.

Planned artifact: reverse-proxy-topology.png

Network Defenselab documentation

Network Defense Lab — Segmentation & Traffic Analysis

A lab environment focused on network segmentation, suspicious traffic detection, packet analysis, and incident reporting.

Purpose

Connect networking fundamentals to security operations and incident response.

Security Value

DMZ thinking, ACLs, default-deny policies, source/destination analysis, and evidence-based response.