Skip to main content

Infrastructure

2025

Understanding Ansible Semaphore by Building a Hardening Audit Pipeline with Lynis, and Prometheus
1030 words·5 mins
Development Infrastructure Linux Sysadmin
Building an automated Linux hardening audit pipeline using Ansible Semaphore, Lynis, and Prometheus
An Agentic Workflow for YARA-L: Automatic Rule Generation with Gemini CLI and Chronicle
2147 words·11 mins
Projects AI Development Infrastructure LLM
This is a small framework I put together to generate YARA-L detection rules with an LLM in a self-correcting feedback loop. It aims at automating Detection Engineering for Google SecOps (Chronicle)
Architecture overview: Designing a Self-Managing Linux Fleet
1499 words·8 mins
Projects Development Infrastructure Network Architecture
I needed an All-Terrain Linux fleet that could take care of itself: configure, monitor, patch, and protect itself across any environment. This post covers the architecture I designed to make that happen.
Agentic Sysadmin. No Playbooks, No YAML
1343 words·7 mins
Projects AI Development Infrastructure LLM
This post shows the minimal proof of concept SSH tool I built for Opencode AI, and how it could be used to “talk to” remote machines.
Firewall Inception: My pfSense Lab with Proxmox, Cloudflared, and Tailscale
2653 words·13 mins
Projects AI Development Infrastructure Cloud Programming
A simple pfSense ACL project turned into a homelab adventure: Proxmox networking, Cloudflared proxying, and Tailscale inception for remote access.
Who's monitoring my monitoring Infrastructure? Desigining for observability with Grafana stack
1922 words·10 mins
Projects Network Development Cloud Infrastructure Cybersecurity
In this post, I go through the design process of setting up a monitoring stack with Grafana and Prometheus, along with a couple of Prometheus custom node exportes, inside a Tailscale network, to monitor a SIEM collection infrastructure stack. Link to Github repository: Argandov/Engineering-Patterns Monorepo for a collection of infrastructure & automation patterns for different purposes. Python 1 0
Red Team Phishing infrastructure + payload setup
2577 words·13 mins
AWS Projects Blue Development HomeLab Infrastructure Pentesting Red Team Cybersecurity
Buildout of an OSPEC prepared Phishing infrastructure as well as FUD decoys and payloads.

2024

CSPM Pt 1 Deepfence Threatmapper Installation & Tests
267 words·2 mins
Projects AWS Cloud HomeLab Infrastructure Networking Cybersecurity
I’m installing and testing Deepfence’s Threatmapper for the first time, an Open Source Cloud Native Application Protection Platform (CNAPP) - To test it against some use cases and understand it a bit better.