alexchmiel.com
~/projects

Built, defended, documented.

project 01 · 2026 playable
Phishing Demo

six emails. safe or phishing?

drawn from a pool of 52, so every round is different. after each call, the forensic tells light up in place.

nothing is stored · nothing is sent

Phishing Demo

A six-round game: rendered emails, one call each, safe or phishing. The forensic tells light up exactly where you missed them, and a letter grade waits at the end.

TypeScriptAstro

case study →

project 02 · March 2026 NECCDC 2026
blue team · DC01 · day 1

CCDC blue-team operations

Runbooks and hardening notes written for live play at NECCDC 2026: defending two Active Directory domains against a professional red team while keeping scored services green. Plus the postmortem, rough edges left in.

Active DirectoryGroup PolicyKeycloakpfSenseWindows hardeningIncident response

case study → GitHub ↗

project 03 · 2026 · ongoing in progress
pfSense · filter.log · live
WAN firewall core sw. VLAN 10 VLAN 20 mgmt block in log all users-web-egress · pass

Firewall management lab

A homelab run the way a production SOC runs a firewall: explicit-deny policy, a change request in front of every rule modification, Suricata alerting, and incident investigations written up end to end.

pfSenseSuricatasyslog-ngChange managementIncident response

case study → Full writeup ↗Artifacts ↗