What I Use

My tools, homelab, self-built software, and open source stack for IT, cybersecurity, and everything in between

🚀 Built by Me

PSSM

My personally developed password manager. Built from scratch with a security-first architecture, AES-256 encryption, zero-knowledge design, and a clean CLI + GUI interface. No third-party cloud — fully self-hosted.

Password Manager Self-Built

Notey

A fully encrypted note-taking app I built end-to-end. AES-256 encryption at rest and in transit, markdown support, offline-first design, and synced across devices through my own infra. My second brain — on my terms.

Notes App Self-Built

MoCipher.com

This very site. Static HTML/CSS/JS on Cloudflare Pages with Workers API, KV storage, and a custom admin panel. No frameworks, no bloat — just clean code.

Portfolio Self-Built

💻 Development

VS Code

Primary code editor. Heavily customized with extensions for Python, C++, Docker, remote development, and GitHub Copilot.

Editor

JetBrains IDEs

PyCharm for Python-heavy projects, CLion for C++ work. Great for refactoring and debugging complex codebases.

IDE

Git & GitHub

Version control for everything. GitHub for collaboration, CI/CD pipelines, Actions, and code review workflows.

Version Control

Docker & Docker Compose

Containerization for local dev, testing, and prod. Multi-service stacks, custom images, and integrated into my homelab.

DevOps

Postman & Insomnia

API testing, documentation, and debugging. Essential for building and validating REST & GraphQL endpoints.

API Tools

Neovim

Lightweight terminal editor for quick edits and server-side work. Custom Lua config with LSP, Treesitter, and Telescope.

Editor

🔐 Cybersecurity

Wireshark

Network protocol analyzer for deep packet inspection, traffic analysis, and network troubleshooting.

Network Analysis

Burp Suite Pro

Web application security testing. Intercepting proxy, active scanner, and intruder for penetration testing engagements.

Pen Testing

Nmap & Masscan

Network discovery and security auditing. Port scanning, OS fingerprinting, service detection, and large-scale reconnaissance.

Scanning

Splunk / ELK Stack

SIEM solutions for log aggregation, threat detection, correlation rules, and real-time security monitoring dashboards.

SIEM

CrowdStrike / Defender

Endpoint detection and response (EDR) platforms for threat hunting, incident response, and behavioral analysis.

EDR

Metasploit Framework

Penetration testing framework for exploit development, vulnerability validation, and security assessments.

Exploitation

Ghidra

NSA's open-source reverse engineering suite. Disassembly, decompilation, and binary analysis for malware research.

Reverse Engineering

YARA & Sigma Rules

Pattern matching for malware classification and detection rule writing. Custom rulesets for threat intelligence.

Threat Intel

🏗️ Infrastructure & Homelab

Personal Homelab

A fully self-hosted homelab running 5 Kubernetes clusters for orchestrating services, experiments, and production workloads. Proxmox for virtualization, with automated provisioning and monitoring.

Homelab Kubernetes

Kubernetes (K8s)

5-cluster setup with K3s and kubeadm. Running microservices, CI/CD runners, monitoring stacks, and personal apps. Helm charts for templating, ArgoCD for GitOps.

Orchestration

Proxmox VE

Type-1 hypervisor running VMs and LXC containers. The backbone of my homelab — hosts K8s nodes, dev environments, and security labs.

Virtualization

Cloudflare

DNS, CDN, Pages, Workers, and Tunnels. Powers this site, handles DDoS protection, and provides zero-trust access to homelab services.

Cloud

Microsoft Azure

Cloud infrastructure, Entra ID (Active Directory), Azure Sentinel, and enterprise hybrid deployments.

Cloud

AWS

EC2, S3, Lambda, EKS — for scalable cloud workloads, serverless functions, and managed Kubernetes.

Cloud

pfSense / OPNsense

Open-source firewalls for network segmentation, VPN tunnels, IDS/IPS, and traffic shaping across VLANs.

Networking

Terraform & Ansible

Infrastructure as Code for provisioning and configuration management. Reproducible deployments across cloud and homelab.

IaC

🌐 Open Source Tools

Grafana & Prometheus

Monitoring and observability stack. Custom dashboards, alerting rules, and metrics collection across all clusters and services.

Monitoring

Traefik

Cloud-native reverse proxy and ingress controller. Auto-TLS with Let's Encrypt, middleware chains, and service discovery.

Proxy

Pi-hole / AdGuard Home

Network-wide DNS ad blocking and tracking protection. Running on dedicated LXC containers in the homelab.

DNS

Gitea

Self-hosted Git server for private repos and internal projects. Lightweight, fast, and integrated with CI runners.

Git Server

Nextcloud

Self-hosted cloud storage and collaboration suite. File sync, calendar, contacts — running on my homelab K8s cluster.

Cloud Storage

Vault by HashiCorp

Secrets management and data encryption. Dynamic credentials, PKI infrastructure, and access policies for homelab services.

Secrets

WireGuard

Modern VPN protocol for secure remote access to homelab. Fast, minimal, and cryptographically sound tunnel setup.

VPN

Uptime Kuma

Self-hosted monitoring tool for tracking service uptime, response times, and SSL certificate expiration across all my infra.

Uptime

🖥️ Hardware

MacBook Pro

Primary development machine. Great for terminal-heavy workflows, mobile productivity, and on-the-go coding.

Laptop

Custom Desktop

High-performance workstation for virtualization labs, compiling, and multi-monitor setups. Dual-booted with Linux.

Desktop

Homelab Servers

Rack-mounted and mini PCs running Proxmox, hosting 5 K8s clusters, NAS storage, and dedicated security lab environments.

Servers

Dual Monitors

Essential for monitoring dashboards, running VMs side-by-side, and keeping docs visible while coding.

Display

Ubiquiti Network Gear

UniFi switches, access points, and gateway for enterprise-grade networking at home. VLANs, PoE, and centralized management.

Networking

⚡ Productivity

Notey

My own encrypted note app. AES-256 encryption, markdown rendering, offline-first sync — built because I trust my own code more than any cloud service.

Notes Self-Built

PSSM

Self-built password manager with zero-knowledge architecture. All credentials encrypted locally before any sync happens. No SaaS dependency.

Security Self-Built

iTerm2 + Oh My Zsh

Terminal emulator with a customized Zsh shell, custom aliases, autosuggestions, and syntax highlighting for efficient CLI workflows.

Terminal

TradingView

Charts and technical analysis for day trading. Real-time data, custom Pine Script indicators, and multi-timeframe analysis.

Trading

Raycast

Blazing-fast macOS launcher replacing Spotlight. Clipboard history, snippets, window management, and custom extensions.

Launcher