§ 01 / The Blog

From the workshop.

Field notes on cybersecurity, AI-assisted development, infrastructure, and the craft of shipping things that actually work.

Home Lab Wazuh SIEM Ansible Docker Compose UDM Pro Pi-hole macOS Claude Code Security Engineering

Homelab Wazuh, Part 3: The Cascade, the Fix, and Four Active Agents

The climax of the Wazuh homelab series. deploy-wazuh.yml meets reality, eight bugs cascade across two evenings, the UDM Pro starts forwarding live syslog, three agents enroll across Linux, Pi, and Apple Silicon, and the captain pattern that orchestrated all of it gets an honest retrospective.

Chris Johnson·May 18, 2026·26 min read

Home Lab Wazuh SIEM UDM Pro Pi-hole Security Engineering Ansible Claude Code

Homelab Wazuh, Part 1: Why Wazuh, and the 29-Task Plan Before Any Code

Why a security engineer running a small home network picked Wazuh over Splunk, Elastic, and Graylog, what hardware caught the job, and the 29-task implementation plan that went through 5 patches before a single playbook ran against the target server.

Chris Johnson·May 14, 2026·20 min read

Browse by Topic

Weekly Digest

Get a weekly email with what I learned, summaries of new posts, and direct links. No spam, unsubscribe anytime.