My Background

WAZUH

Home Lab Projects

Using Wazuh for Security Monitoring & Compliance
I have experience utilizing Wazuh, an open-source security platform, for SIEM, threat detection, and compliance monitoring. Through hands-on projects, I have configured Wazuh agents, set up rule-based alerts, and conducted log analysis to improve security visibility across Linux environments. My work with Wazuh includes real-time intrusion detection, vulnerability scanning, and integrating it with ELK Stack for advanced security analytics.

Proxmox

Proxmox, a type 1 hypervisor deployed using a spare laptop. Proxmox is utilized on the network to create virtual machines such as the one pictured (Wazuh) which is an open-source SIEM System Information and event manager. Wazuh monitors events on multiple systems on the system via agents.

Proxmox is a robust and feature-rich open-source platform that provides virtualization and containerization solutions for managing and running virtual machines (VMs) and containers. It offers a user-friendly web interface, making it easy to deploy and manage virtual environments. Proxmox enables the creation of VMs and containers, allowing users to efficiently utilize hardware resources and optimize performance. It supports various virtualization technologies, such as Kernel-based Virtual Machine (KVM) and Containers (LXC), ensuring flexibility and adaptability to different requirements. With Proxmox, administrators can easily monitor and control the virtual infrastructure, including resource allocation, networking, and storage management. Additionally, Proxmox offers high availability and clustering features, ensuring reliable and fault-tolerant operations. Overall, Proxmox is a comprehensive and versatile solution for virtualization and container management, empowering organizations to efficiently utilize their hardware and streamline their IT infrastructure.

Pf sense

Pf sense deployed via Zima Board used to monitor, manage, and block unwanted internet traffic on the network. Snort has also been implemented for IDS/IPS.

pfSense is a powerful open-source firewall and routing platform that provides advanced network security and management functionalities. With its intuitive web interface, pfSense enables users to easily configure and monitor their network settings. It offers various features, such as traffic shaping, VPN connectivity, intrusion detection and prevention, and load balancing. pfSense also supports high availability and failover solutions to ensure continuous network connectivity. With a wide range of add-ons and packages, pfSense can be customized to meet specific network requirements. Its robust architecture and constant updates make pfSense a reliable choice for both small-scale and enterprise-level networks. Whether you need to secure your home network or manage a complex corporate infrastructure, pfSense provides the flexibility and performance you need.