I build systems that observe, analyze, and act.
Building offensive infrastructure from the ground up; recon pipelines, cloud-native tooling, and the automation that makes it all scale.
-
๐ WatchDog; In Progress: Watchdog-V2
Automation-first recon pipeline that scans, analyzes, and generates AI-powered security reports
-
๐ NetMalper
Network scanning and mapping tool for discovering devices and attack surface in a Graph
-
๐งช VulnMalper
Vulnerability pipeline that eats NetMalper graphs. Fingerprint โ Scan โ Verify, with every stage feeding the next.
-
๐ Kali Mcp Server
Security testing tools exposed as MCP tools for use with Claude Desktop via Docker MCP Toolkit.
-
๐ ShellCraft
A lightweight, interactive Go CLI tool for generating obfuscated, multi-platform reverse shell payloads on the fly.
-
In Progress
Im working on something called ploit-malper: Still under active experimentation.
Focused on learning offensive tradecraft, internal network testing, and building lab environments that simulate real targets.
The goal is not just to use tools it is to understand systems deeply enough to break them.
mitch@watchdog:~$ whoami
ROLE : Red Team Aspirant
FOCUS : Internal Networks / Infrastructure / Physical Security
INTEREST : Recon automation, attack simulation, lab-built tooling
STYLE : Build systems that scale offensive work
mitch@watchdog:~$ tools --stack
Recon : subfinder, naabu, rustscan, httpx, nuclei, nmap, amass, netmalper
Wireless : aircrack-ng, hashcat, tcpdump, wireshark
Exploitation: metasploit, custom payloads, msfvenom, vulnmalper
Infra : n8n, docker, tailscale, proxmox, swarm
mitch@watchdog:~$ echo $CURRENT_OBJECTIVE
"Build scalable offensive infrastructure and grow into a real Red Team operator"
mitch@watchdog:~$ echo $PHILOSOPHY
"I actually have to know the infrastructure to break it"
AI is not a chatbot โ it's part of the system.
Workflow:
- Architecture design with AI
- Rapid infra scripting (Bash / Python)
- MCP servers for tool integration
- Automated recon + analysis pipelines
OpenClaw Setup:
- "Steve" (The Agent): Running on AWS EC2 t4g.small
- Role: Personal infrastructure assistant & automation engine
- Capabilities:
- GitHub management (PRs, Issues, Commits)
- Infrastructure monitoring & health checks
- Automated email & calendar management
- Slack/Telegram integration for real-time updates
- Philosophy: AI doesn't replace engineering. It amplifies it.Hardware-triggered, cloud-native reconnaissance platform.
Flipper Zero โ WebHook โ AWS Lambda โ Cloud Recon Workers โ AI Analysis โ Streamlit UI
flowchart TB
subgraph Edge["Edge Network & Security"]
ISP([Internet])
UDM[Ubiquiti Dream Machine / EdgeRouter]
FW[Advanced Firewall Rules / IDS]
ISP --> UDM
UDM --> FW
end
subgraph Proxmox_Cluster["Proxmox VE HA Cluster (The Beast)"]
direction TB
PVE1[Proxmox Node 1]
PVE2[Proxmox Node 2]
PVE3[Proxmox Node 3]
CEPH_OSD1[(OSD Pool 1)]
CEPH_OSD2[(OSD Pool 2)]
CEPH_OSD3[(OSD Pool 3)]
PVE1 <--> CEPH_OSD1
PVE2 <--> CEPH_OSD2
PVE3 <--> CEPH_OSD3
end
subgraph K3s_Grid["Kubernetes Control Plane"]
K3S_M1[K3s Master 1]
K3S_M2[K3s Master 2]
K3S_W1[K3s Worker 1]
K3S_W2[K3s Worker 2]
K3S_W3[K3s Worker 3]
end
FW --> PVE1
FW --> PVE2
FW --> PVE3
PVE1 --- K3S_M1
PVE2 --- K3S_M2
PVE3 --- K3S_W1
PVE1 --- K3S_W2
PVE2 --- K3S_W3
subgraph Cloud_Ext["Cloud Extensions"]
ORACLE[Oracle Cloud A1 - Backup Node]
RPI[Raspberry Pi - Satellite]
end
FW <--> ORACLE
FW <--> RPI
subgraph Services["High-Availability Services"]
N8N_HA[n8n Cluster]
GITEA_HA[Gitea HA]
MON[Prometheus + Grafana + Loki]
AI[MCP Servers / LLM Inference]
end
K3s_Grid --> Services
flowchart TB
subgraph Clients
A[Home Devices]
B[Studio Devices]
end
subgraph Network_Fabric["Tailscale Mesh (The Glue)"]
TS[Tailscale VPN]
SWARM_NET[Docker Overlay Network]
DNS[Pi-hole DNS]
end
A --> TS
B --> TS
TS --> DNS
subgraph OpenClaw_EC2["OpenClaw EC2 (The Brain)"]
EC2_AWS["AWS t4g.small"]
subgraph OPENCLAW_CORE[OpenClaw Core]
OC_GATEWAY[Gateway]
OC_AGENT[Steve The Agent]
OC_SKILLS[Skills & Tools]
end
subgraph EC2_SERVICES[Services]
N8N_EC2[n8n]
GITEA_EC2[Gitea]
SILVER_EC2[SilverBullet]
end
end
subgraph Raspberry_Pi["Raspberry Pi (Home Muscle)"]
subgraph PI_CORE[Pi Core]
PI_DOCKER[Docker/Podman]
PI_TAIL[Tailscale Client]
end
subgraph HOME_SERVICES[Local Ops]
JELLY[Jellyfin]
NAVI[Navidrome]
WATCHDOG[Watchdog UI]
GRAFANA[Prometheus + Grafana]
end
subgraph PI_STORAGE[Local Storage]
NAS_1TB[/"1TB Local NAS"/]
end
end
subgraph Windows_Studio["Windows 10 Studio (The Vault)"]
WIN_DESK[Desktop Environment]
subgraph WIN_STORAGE[Studio NAS]
WIN_NAS[/"Large Media & Vault Storage"/]
end
subgraph DEV_TOOLS[Dev Environment]
VS_CODE[VS Code / Cursor]
TERM[Terminal / WSL]
end
end
%% Connections
TS --> SWARM_NET
SWARM_NET --> EC2_AWS
SWARM_NET --> PI_DOCKER
SWARM_NET --> WIN_DESK
OC_AGENT -.->|Controls| PI_DOCKER
OC_AGENT -.->|Manages| WIN_DESK
WIN_NAS <-->|Sync| NAS_1TB
Built. Broken. Documented.
-
๐ง About Me: Nah, Dont Read This
-
๐ด Security Reports: Reports of Stuff i 'pwned' ( Hacked )
-
โ๏ธ Homelab Deep Dive: A Comprehensive explanation of my HomeServer