Argv.Blog

Building an automated Linux hardening audit pipeline using Ansible Semaphore, Lynis, and Prometheus

This is a small framework I put together to generate YARA-L detection rules with an LLM in a self-correcting feedback loop. It aims at automating Detection Engineering for Google SecOps (Chronicle)

I needed an All-Terrain Linux fleet that could take care of itself: configure, monitor, patch, and protect itself across any environment. This post covers the architecture I designed to make that happen.

This post shows the minimal proof of concept SSH tool I built for Opencode AI, and how it could be used to “talk to” remote machines.

A simple pfSense ACL project turned into a homelab adventure: Proxmox networking, Cloudflared proxying, and Tailscale inception for remote access.

I turned an RTL-SDR dongle in my homelab into a full-time, remote-access RF observatory. This guide covers setting up a Proxmox VM as an SDR server with rtl_tcp, securing it over Tailscale, and streaming signals to GQRX from anywhere in the world.

iptables in 5 Minutes: a quick cheat-sheet for quick rule edits, safe testing, and making changes stick, without tripping over firewalld, UFW, or nftables.

Intro and Raycast showcase

I used AI to learn Golang in 2025. I was faster than ever, but couldn’t remember what I’d written. A recent MIT study explains why.

Interesting and useful use cases of !, #, and ? expansions in Bash

Denial of Service by playing Janet Jackson’s “Rhythm Nation”

Booting up an AWS EC2 Instance with Tailscale baked in for a quick homelab testing environment

Debian Linux post-installation checklist: Basic installations and configurations for Terminals, Networking, utilities, etc.

In this post, I go through the design process of setting up a monitoring stack with Grafana and Prometheus, along with a couple of Prometheus custom node exportes, inside a Tailscale network, to monitor a SIEM collection infrastructure stack. Link to Github repository: Argandov/Engineering-Patterns Monorepo for a collection of infrastructure & automation patterns for different purposes. Python 1 0

My current workflow and overall setup in Linux, MacOS and Windows.

Recipe for a nice cold brew coffee concentrate

A weekend project turned into Project Iris - A serverless ETL pipeline that bridges the gap between modern vulnerability management and SIEM platforms. This first post dives into the first decisions, challenges, and lessons learned in building a cost-effective, secure, and scalable solution using Google Cloud Platform.

A brief SSH tunneling & proxy methods guide - Dynamic, Remote & Local port-forwarding. Tunneling and Hardening resources.

Buildout of an OSPEC prepared Phishing infrastructure as well as FUD decoys and payloads.

Useful ways to leverage Termbot as a Linux CLI LLM tool. From piping/redirecting stdout to reading text from local files, it allows for several combinations of “data chaining”

I’m installing and testing Deepfence’s Threatmapper for the first time, an Open Source Cloud Native Application Protection Platform (CNAPP) - To test it against some use cases and understand it a bit better.

Quick script to create a Service Principal (Enterprise App) with Global Reader / Viewer on a specified Azure Subscription

Weaver is a tool I made for extracting saved acticles from pocket , with a specific tag, and summarize them with OpenAI GPT-4. This way I can save blog posts, documentation, etc. And periodically use Weaver to extract summaries of all of them at once.

Termbot is a command-line interface tool for conveniently interacting with OpenAI’s GPT-X or Groq’s natural language processing system, directly from your terminal. It allows the user to use standard ChatGPT-like question/answer functionality, with added flexibility such as interacting with local file contents, sending large data from STDIN, using custom local instructions, and more.

Using aliases with SSH for quick & easy connections

Quick how-to: Create favicon.ico from PNG by using FFMPEG

Exploring the Active Directory Houndsquad: BloodHound/Sharphound, PlumHound, and GoodHound for Red and Blue Team operations.

The process of setting up TLS in Microsoft Windows Remote Desktop Services. No certificate verification Server or Revocation lists are taken into account.

Of all the reading techniques and tips I’ve seen and tried over the years like Speed reading techniques, Feynman Technique, Flash Cards / Notecards, etc. Nothing has actually sticked with me. Here, I proposed a new way, that has helped me develop a deeper comprehension and higher engagement while reading.

TryHackMe | Intrusion Detection 💡 Attacking Grafana & testing Wazuh HIDS & Suricata NIDS

Tryhackme writeup: Brainpan" Brainpan is part of the “Offensive Pentesting Path” in TryHackMe, and it is a straight-forward buffer overflow activity with further extra steps to achieve full privilege escalation.

A procedure to allow users to switch (su) to another user, using their own password instead of the “target” user password

Using Mono utility to run NetworkMiner, a Windows utility for PCAP analysis

This CTF was part of the event hosted at ctf.hackthebox.eu “Cyberapocalypse”. Mission: Find a payload and a flag inside “Alien Weaknesses.pptx”

Spending some time learning Vim to save time

The results of this guidelines render only a casual-use Firefox configuration. If you have special privacy/anonimity needs, or are concerned about sofisticated attack vectors, then please do not use Firefox (Or use it with other privacy-enhancing services/softwares). Do your own modifications and research as needed.