Infrastructure Platform
This space shares how compliance narratives, automation, and telemetry work in sync to keep mission-critical systems auditable, performant, and predictable.
1
6
Teleport Alternative? Meet BAMF — An Open Source Jump Host for SSH, Databases, and Compliance
Projects
A curated list of open-source-friendly controls, observability, and compliance tooling designed to boot via Docker, Docker Compose, Kubernetes YAML, or Helm while staying private until hardened.
A reusable centralized DAST project with OWASP ZAP, Nuclei, and OPA policy logic, offering consistent PASS/WARN/FAIL policies, audit-ready artifacts, PR summaries, and a reusable GitHub Actions workflow for dynamic security testing.
Writing
Centralized access. Identity-first control. Audit visibility — without giving up self-hosting.Photo by Soroush H. Zargarbashi on UnsplashLast night I couldn’t sleep. Instead of scrolling social media, I opened my lab and…
So I built a reusable GitHub Actions workflow for ZAP, Nuclei, and OPAPicture by Abhilash Balakrishnan on UnsplashIf you’ve worked on more than one application repo, you know the pain.Every new service spins up. Someone…
Making identity actions explainable by design.If you’re already using one user, one identity, one set of credentials across your systems — that’s a good starting point.But real systems are never perfect.What happens when…