Overview
This site documents my personal security lab and selected hands-on cybersecurity projects. The goal is to build, test, and document practical security implementations in a structured and reproducible way. This documentation is intended to show how I planned, implemented, tested, and reviewed my projects, with an emphasis on technical clarity and practical value.Public Disclosure and SanitizationThis is a public documentation site. Sensitive information such as credentials, API keys, relevant personal data, and environment-specific details is removed, generalized, or sanitized before publication.
AI Assistance DisclosureAI tools were used in parts of the documentation workflow for brainstorming, wording support, and draft assistance. All published content was reviewed, adapted, and validated by me before release.
What this documentation covers
SIEM deployment and alert validation
Endpoint visibility and telemetry improvement
Monitoring and log collection
Network segmentation and firewall policy design
Security workflow automation
Structured project documentation
Current projects
Wazuh Lab
Deployment and documentation of a dedicated Wazuh SIEM environment covering log collection, detection engineering, integrations, and custom dashboards. Deployed on Ubuntu running on Proxmox with Windows and Linux endpoints.
Azure Cloud Security Operations Lab
A cloud-native security operations environment built on Microsoft Sentinel, Defender XDR, Entra ID, and Azure Logic Apps for SOAR automation