About This Website

After passing the CompTIA Security+ exam, I wanted to build something based on the lessons and fundamentals learned in the exam.

The result is this website.

Current Key Features

• Access logs integrated into a fully onprem open source Wazuh SIEM using docker and a seperate ubuntu server
• Malicious behavior detected in Apache logs trigger an alert in the Wazuh SIEM
• Double NAT with ISP router and Ubiquity Gateway
• Network segmentation and isolation using managed cisco switch + ubi
• Wireguard VPN + SSH to work on this project from anywhere
• TunnelBear for remote reboots through LUKS encryption
• Full git integration with a script that pulls and copies the repo changes into apache

In terms of hardware, this site is running on an old laptop that was gathering dust. I replaced the mechanical drive with an SSD, booted onto an ubuntu usb, and voila, an old dusty laptop was turned into a webserver.

To learn more about the history and current status of this project please see the project status page

Future features for this site

• Immediate plans
  • Develop a deeper understanding of Wazuh
  • Integrate a DNS server
  • BCP / DRP backup solution
• Future plans
  • Integrate windows Server into the stack
  • Self host an LLM
  • Do a red team/blue team exercise
  • Get familiar with LDAP and host some simulated credentials
  • Self host a password manager
  • Test various password attacks on stored credentials