Alliance Fleet

Projects

Technical work from the Alliance Fleet, documented as evidence for the Cloud and IAM engineering path. Each project maps directly to a skill domain in the Alignment Matrix.

Act II writeup

VFIO Forensic Postmortem

Silent hard lockup, zero local logs. Crash timeline reconstructed using external InfluxDB telemetry at 10-second resolution. Root cause: PCIe ASPM power state transition under VFIO.

ProxmoxVFIOInfluxDBIncident Response

Read writeup →

Act II project

Fleet Defense Stack

Wazuh SIEM across 10+ agents, n8n enrichment with AbuseIPDB threat intelligence, automated UniFi IP blocking, Discord alerting with MITRE ATT&CK tagging.

Wazuhn8nSecurityDiscord

Read writeup →

Act II project

Hybrid Identity Lab

On-prem AD forest (alliance.lab) synchronized to Entra ID via Password Hash Sync. GPO cascade testing, domain-joined workstation, hands-on SC-300 prep.

Active DirectoryEntra IDSC-300IAM

Read writeup →

Act II project

BD-1: Claude-Powered Discord Bot

Custom Discord bot powered by Anthropic Claude API with a $10/month budget cap enforced in code. Git-synced knowledge base, Haiku/Sonnet model routing, PM2 process management under a dedicated user. Cohabitates with K-2SO on Stinger Mantis (VM 203). Archiving to bd1-archive as Jocasta rebuild begins.

Node.jsClaude APIDiscordPM2Git

Read writeup →

Act II project

Local AI Stack

RTX 4000 Ada passed through via VFIO to a dedicated VM. Ollama at 50+ tokens per second. OpenWebUI, AnythingLLM RAG with 2,385 embedded document vectors, ComfyUI. Zero data egress.

OllamaVFIORTX 4000 AdaRAGOpenWebUI

Read writeup →

Act II project

Authentik SSO Platform

Centralized identity for 15+ services via OIDC, SAML, and Forward Auth. MFA enforced at the flow level, not per-app. Single audit trail forwarded to Wazuh. One login gates everything.

AuthentikOIDCSAMLMFAIAM

Read writeup →

Act II project

Azure Offsite Backup Pipeline

Nightly Proxmox-to-Azure Blob backup via azcopy on the Corvette node. SAS-scoped credentials, 3AM cron, full vzdump set pushed daily. The first piece of the homelab to cross the boundary into Azure.

AzureBlob StorageazcopyBackupAZ-104

Read writeup →

Act II project Aug 2026

n8n Infrastructure Automation

20+ active workflows following a Detect/Enrich/Decide/Act/Report pattern. Connects SIEM, identity, network, AI inference, and Discord into one operational layer.

n8nWebhooksDiscordPostgreSQL

Act II project Aug 2026

TIG Stack Observability

Telegraf shipping 10-second metrics to InfluxDB from every host. Grafana dashboards for fleet health and GPU telemetry. The monitoring layer that made the VFIO postmortem possible.

TelegrafInfluxDBGrafanaFlux

Act III project In Progress

Alliance Fleet Codex

Four-tool documentation system: NetBox for inventory, BookStack for runbooks, Gitea for operational artifacts, Homepage as the single pane of glass. Documenting the fleet like it is production.

BookStackNetBoxGiteaHomepage