🧪 Projects
Here's a showcase of my key projects in software security, container technology, and intrusion detection systems.
CVE-2019-5736 PoC
A comprehensive proof-of-concept exploit for CVE-2019-5736, demonstrating a critical container
breakout vulnerability in runc via overwritten symlink /proc/self/exe. This project
showcases deep understanding of container internals and security boundaries.
IDS Lab Framework
A modular, Docker-based laboratory environment designed for intrusion detection and security evaluation. This framework provides a controlled, reproducible environment for testing and developing IDS solutions.
🎯 Key Features
- Simulated network architecture with attacker, target, gateway, and monitoring nodes
- Suricata integration as the current IDS backend
- Modular design for easy extension and customization
- Docker-based deployment for consistent environments
🚀 Use Cases
- Research baseline for IDS evaluation
- Educational environment for cybersecurity training
- Proof-of-concept scenarios and testing
- Template for building complex IDS architectures
🔄 Future Roadmap
Currently supports rule-based detection. Planned enhancements include ML-based detection capabilities, advanced orchestration features, and integration with modern SIEM platforms.
🚀 K3s Migration: Planned migration from Docker Compose to K3s (lightweight Kubernetes) to enable easy on-demand scaling of the lab environment and better resource management for large-scale security testing scenarios.