Skip to content
View FabulaNox's full-sized avatar
🛡️
Problems don't respect boundaries
🛡️
Problems don't respect boundaries
5 followers · 8 following

Achievements

Achievement: Pull Shark

Achievements

Achievement: Pull Shark

Block or report FabulaNox

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
FabulaNox/README.md

Bogdan Carmaciu

Blue and purple team security engineer based in Kaunas, Lithuania. SEC1 certified. I build defensive infrastructure, write detections, and document the work in public.

What's here

Selected projects from my local GitLab forge:

  • NoxLab: reference architecture for a self-hosted security homelab on one box. Segmented network, tiered Docker, self-hosted GitLab CI/CD, SIEM with local-LLM triage, tested bare-metal DR.
  • tripwire-honeypot: deception-based intrusion detection using a fake sudo group as a canary. PAM hooks, Wazuh integration, MITRE ATT&CK and D3FEND mapping, Terraform deployment.
  • nethunter-s10e-fix: kernel and Magisk modules restoring missing HID functionality in Kali NetHunter on the Galaxy S10e. Hardware and firmware-level Linux work.
  • msi-power-profile: power profile suite for MSI laptops on Linux, layered on top of TLP.

Current focus

Home SOC built in under six months on Wazuh, processing 160,000+ events per day, with rule refinement and OpenSearch dashboards. Detection engineering, deception, and incident workflow automation. Security+ exam prep.

Stack

Wazuh, Suricata, OpenSearch, nftables, OpenWrt, MikroTik, GitLab CE, Terraform, Ansible, Docker, K3s.

Find me

Pinned Loading

  1. NoxLab NoxLab Public

    Reference architecture for a self-hosted security homelab on one box - segmented network, tiered Docker, self-hosted GitLab CI/CD, a SIEM with local-LLM triage, and tested bare-metal DR. Design not…

  2. msi-power-profile msi-power-profile Public

    Linux power-profile suite for the MSI Thin 15 B12UCX (and similar MSI laptops with the msi-ec kernel module). Four named profiles - Ultra, Performance, Balanced, Eco - layered on top of TLP. Automa…

    Shell

  3. nethunter-s10e-fix nethunter-s10e-fix Public

    NetHunter kernel + Magisk modules for the Samsung Galaxy S10e (beyond0lte) that fix the missing HID in Kali's prebuilt and make USB gadget attacks (HID keyboard/mouse, mass storage, serial, ECM) ac…

    Shell

  4. tripwire-honeypot tripwire-honeypot Public

    A deception-based intrusion detection system that creates a fake "sudo" group to detect attackers.

    Shell