Project Showcase

Project: Passbolt Integrator

A custom-built zero trust credential management system designed to work with the Passbolt password manager. This project has three key components:

  • Phase 1: A Bash wrapper function for structured extraction of credentials via the Passbolt CLI.
  • Phase 2: A modular Python framework for encrypting, decrypting, and injecting credentials into workflows such as SSH access, SQL connections, and web applications.
  • Phase 3: Integrated auditing for all critical operations, ensuring traceability and accountability.

The result: I don’t know my passwords, I don’t need to know them, and with TOTP-enforced sudo access, I rarely interact with them directly.

Project: cert_mgr

An in-progress certificate automation utility built to work with pfSense and the acme.sh-based certificate manager. It enables automatic synchronization of centrally managed TLS certificates across infrastructure nodes, supports post-deployment hooks, custom target paths, and validation checks. This project powers the live certificate in use on this very site.

Project: MediaTracker

A regex-driven browser extension that integrates with a backend to track viewed serial content across platforms like YouTube and Netflix. Features include:

  • Custom override rules for title-to-series correlation
  • Dry run/testing mode for non-destructive evaluation
  • Secure API token storage and per-site control
  • Planned support for watched status and episode prediction
Project: Outlook DLP Plugin

A modular Outlook add-in designed to prevent accidental data leaks by intercepting sensitive emails before they're sent. Key features include:

  • Rule-based scanning for sensitive terms and client-specific identifiers
  • Context-aware recipient validation to catch misdirected messages
  • Minimal user disruption with single-click confirmation prompts
  • Built-in audit logging and compliance alignment with GDPR, HIPAA, and CCPA
Project: pfSense SOAR Integration

A purpose-built Security Orchestration, Automation, and Response (SOAR) system for pfSense, designed to dynamically adjust firewall behavior based on real-time log intelligence. Key features include:

  • Centralized log aggregation via rsyslog with secure, authenticated transport
  • Automated classification of inbound traffic into “monitored” and “denied” tiers
  • Modular REST API for managing dynamic IP groups and enforcement logic
  • Secure firewall rule updates via SSH or pfSense API, with privilege controls
  • Comprehensive audit trails and summary reports for engineering and executive visibility