Homelab & Toolbox
A practical environment for learning infrastructure, monitoring, security detection, identity, and automation by running real services and fixing real breakages.
Architecture
Toolbox
Infrastructure
- Linux server administration
- Docker container deployment
- Dockge stack management
- Cloudflare Tunnel exposure
Security
- Wazuh SIEM and alerting
- Suricata IDS coverage
- Log review and triage
- Incident writeups and root-cause notes
Monitoring
- Grafana dashboards
- Prometheus metrics
- Loki log storage
- Promtail log shipping
Automation
- n8n workflow automation
- Repeatable admin tasks
- Service health checks
- Operational reminders and cleanup flows
Identity & Access
- Authentik identity layer
- Centralised service access
- Proxy-aware application exposure
- Access-control experimentation
Documentation
- Markdown incident notes
- Jekyll writeup publishing
- Build/break/fix logs
- Portfolio-facing evidence
Changelog
Short operational history of the lab. Larger changes and failures can be expanded into full Markdown writeups over time.
Added Jekyll writeups system
Converted the static portfolio into a Jekyll site so incidents, builds, projects, and notes can be written in Markdown and rendered through the site theme.
Read writeup →Identity and secure access layer
Centralising access with Authentik, exposing selected services through Cloudflare Tunnel, and reducing ad-hoc access patterns across the lab.
Grafana / Prometheus / Loki observability
Added metrics, logs, and dashboards so services are visible during normal operation and easier to diagnose when they degrade.
Read writeup →Wazuh and Suricata security stack
Stood up SIEM and IDS coverage as the security layer for log analysis, alerting, and network detection practice.