Repo Secret Scanner — Architecture & Design

Overview The Repo Secret Scanner at cybergrind.org/tools/repo-scanner/ scans public GitHub repositories for exposed credentials — AWS keys, GitHub tokens, Slack tokens, Stripe keys, private keys, and more — without ever cloning the repository. It runs entirely on a Cloudflare Worker, reads files directly via the GitHub API, and returns a severity-scored dashboard of findings with matched secrets redacted before they ever leave the scanner. ...

June 30, 2026 · 7 min · Logan

Repo Secret Scanner — Deployment Guide

Overview This guide covers the complete deployment of the Repo Secret Scanner from a fresh clone to a live public tool. It assumes you’re deploying into the same stack used for CyberGrind: Hugo + PaperMod on Cloudflare Pages, Cloudflare Workers for serverless backend functions, and GitHub for source control. ...

June 30, 2026 · 6 min · Logan

Self-Hosted AI Project Management with Paperclip.ai

Paperclip.ai is a self-hosted AI project management platform. It gives you a Linear-style issue tracker where AI agents can actually pick up tasks, reason through them, and take action — all running on your own infrastructure. No cloud dependency, no data leaving your environment. For a homelab running a SOC stack, threat intelligence pipelines, and a growing collection of automation projects, having an AI agent that can work through a backlog is genuinely useful. ...

May 22, 2026 · 7 min · Logan

Building a Homelab SIEM with Wazuh

A SIEM — Security Information and Event Management system — is the nerve center of a security operations environment. It collects logs and telemetry from across your infrastructure, correlates events into alerts, and gives you a unified view of what’s happening on every machine you care about. For years, running your own SIEM meant either paying for enterprise licensing or wrestling with complex open-source deployments. Wazuh changed that calculus significantly. ...

May 13, 2026 · 8 min · Logan

Cloning an Ubuntu Server Drive and Safely Updating Your Stack

Running a homelab Ubuntu server long enough and you’ll hit two milestones eventually: the drive fills up and you need to migrate to a larger one, and your stack needs a proper maintenance pass to stay current. Both operations are straightforward once you understand the order of operations — but get either one wrong and you’re looking at an unbootable system or a fleet of containers that won’t start. ...

May 11, 2026 · 7 min · Logan

Wiring MISP Into a Self-Hosted AI Security Pipeline

The multi-agent security pipeline we built earlier produces useful reports — structured risk analysis, mitigations, recommendations. But it has a ceiling: every agent reasons from what the model learned during training. It doesn’t know about the domain that started hosting malware last week, the C2 infrastructure tied to a campaign your MISP instance just ingested, or the specific indicators your feeds have flagged today. ...

April 19, 2026 · 10 min · Jason, Cyber Professional

Practical AI Orchestration Without Cloud Dependency

Most AI project tutorials end the same way: deploy to AWS, add an OpenAI API key, pay monthly. That works, but it sidesteps the more interesting question — what does it look like to build something real without handing control to a cloud provider? ...

April 17, 2026 · 8 min · Jason, Cyber Professional

Building Cybersecurity Agents with OpenClaw and Ollama: A Multi-Agent Security Pipeline

If you’ve followed the Self-Hosted AI Stack walkthrough, you’ve got Ollama running locally, OpenClaw as your agent UI, and the whole thing locked down behind Tailscale. That’s a solid foundation. But a chat interface, however useful, isn’t the ceiling of what this stack can do. ...

April 15, 2026 · 11 min · Jason, Cyber Professional

Self-Hosted AI: Building a Private LLM Stack with OpenClaw, Ollama, and Tailscale

There’s a certain appeal to running your own language model. No API costs, no data leaving your network, no rate limits, no terms of service to worry about when you feed it sensitive context. For anyone who works in security — or just values privacy — the idea of keeping inference local is worth the setup cost. ...

April 15, 2026 · 9 min · Jason, Cyber Professional

Zero Trust Access for the Homelab: Securing Self-Hosted Services with Tailscale

If you run self-hosted services at home, you’ve probably hit the remote access problem at some point. You want to reach something — a dashboard, a tool, an API — from outside your home network. The path of least resistance is to open a port on your router and point it at the service. It works. It also quietly puts that service on the internet, discoverable by anyone running a scanner. ...

April 15, 2026 · 11 min · Jason, Cyber Professional