#blue-team
Everything across writeups and projects that touches this topic.
Projects
builds & tooling
- Python · Defensive Security
BlueStack — SIEM-in-a-Box for the B0bTheSkull Blue-Team Toolkit
A pre-wired ELK stack that ingests JSON from four custom blue-team tools, normalizes severity, tags events to MITRE ATT&CK techniques, and surfaces everything in Kibana — one command to stand up
- Infrastructure · DNS
Pi-hole Lab — DNS Filtering on the LAN
A Raspberry Pi 5 running Pi-hole with a local unbound recursive resolver — DNS-layer ad/tracker/malware blocking, observability via Prometheus + Grafana, and a doc set built like infrastructure.
- Python · Threat Intelligence
ThreatPulse — CLI threat intelligence aggregator & web dashboard
A Python tool that fans out IOC lookups across four free threat intel feeds simultaneously, consolidates the results, and surfaces a single threat verdict