An educational, lab-only Flask security project demonstrating how weak authentication logic can be broken in practice. Includes an intentionally vulnerable local login page and a simulated brute-force attacker script to show credential stuffing, missing rate limits, and plain-text passwords—paired with concrete guidance on hardening real-world app.

• Updated Oct 1, 2025
• Python

Este proyecto es un simulador de ciberseguridad diseñado para entornos educativos. Permite a estudiantes practicar técnicas de ataque y defensa en un entorno controlado, replicando situaciones reales de ciberseguridad sin riesgo para sistemas en producción.

• Updated Sep 14, 2025
• Python

A personal documentation of building a home Cybersecurity Lab from scratch. This project focuses on creating a secure environment and tracking my progress, with detailed steps for future reference. This is not a tutorial but a reflection of my approach and work.

• Updated Jul 11, 2025

Cloud-based SOC lab built in Azure using Microsoft Sentinel, KQL, and Logic Apps to simulate attacks, detect threats, and automate incident response.

• Updated Jan 8, 2026

Self-hosted security lab: Qubes/Proxmox, enterprise firewalls, VLAN segmentation, SELKS/Suricata SOC node.

• Updated Dec 8, 2025

Detection-focused Virtual SOC lab simulating enterprise security monitoring using SIEM, pfSense, and MITRE ATT&CK–aligned detections

• Updated Jan 20, 2026
• Python

Active Directory Home Lab setup using VMWare, Windows 11 ISO, and Windows Server 2022

• Updated Jan 18, 2026
• PowerShell

A network-based intrusion detection lab using Snort to detect port scans, brute-force attacks, SQL injection, and ICMP floods simulated from Kali Linux to Metasploitable. Includes custom rules, attack simulations, and log analysis.

• Updated Jun 7, 2025

This GitHub project provides a close real-life phishing attack simulation solution. It uses Gophish for campaign orchestration and Poste.io to send emails to disposable targets, safely assessing susceptibility and strengthening human defenses.

• Updated Jul 13, 2025

Splunk lab detecting SSH brute-force attacks using failed login events, alerts, and dashboards.

• Updated Jan 5, 2026

A fully documented home lab for learning IT systems, security, and support skills. Creatively modeled after the Imperial Navy from Star Wars

• Updated Jun 28, 2025

Simulates adversarial AI threats using agentic behavior for cybersecurity red teaming.

• Updated Apr 8, 2025
• Python

🎓 PwnOsec Academy Trainee Server Laboratory

• Updated Dec 5, 2024
• Python

Implementing Just-In-Time (JIT) access using Entra ID P2 for Zero Trust Security.

• Updated Jan 26, 2026

🚀 A Cisco Packet Tracer project demonstrating secure multi-site connectivity using GRE tunnels, EIGRP dynamic routing, and centralized DHCP with inter-VLAN routing. Features Extended ACLs, WPA2 wireless, and a hub-and-spoke VPN topology between Head Office and Branch Offices.

• Updated Oct 20, 2025

Hands-on EC2 vulnerability scanning and remediation using Amazon Inspector

• Updated Jan 24, 2026

Vulnerability Assessment – Internal Linux Network (CE823 Project) A real-world simulated vulnerability assessment conducted on a virtualized internal network using Nessus, Nmap, Metasploit, and Wireshark. Includes report, risk matrix, CVE breakdown, exploit validation, and remediations.

• Updated Jun 27, 2025

🔍 Detect SSH brute-force attacks with ease using Splunk, leveraging real-time alerts and visual dashboards from simulated Linux authentication logs.

• Updated Jan 29, 2026

🛡️ Build secure multi-site VPNs with GRE-EIGRP, featuring centralized services and inter-VLAN routing for seamless connectivity across multiple locations.

• Updated Jan 29, 2026

lightweight deployment of the Wazuh SIEM (Security Information and Event Management) stack. Custom Docker implementation designed for Coolify and resource-constrained environments, reducing memory footprint by ~40% while maintaining full Blue Team functionality.

• Updated Jan 29, 2026
• Shell