security-portfolio

Landing page for my security engineering projects.

20 commits First commit May 28, 2026 Last commit Jun 22, 2026 (43 minutes ago)

Code Commits Tags

HTML 99.7%

Files 78 entries

▸.github/
- ▸workflows/
  - ◇deploy-pages.yml
▸assets/
- ▸cicd-supply-chain-security/
  - □01-cosign-sign-verify.png
- ▸cti-detection-automation/
  - □01-approval-email.png
  - □02-review-page.png
  - □03-dashboard.png
  - □cti-approval-walkthrough.mp4
- ▸detection-as-code/
  - □01-multi-siem-conversion.png
- ▸hero/
  - □crypto-demo-poster.jpg
  - □crypto-demo.mp4
  - □exploit-demo-poster.jpg
  - □exploit-demo.mp4
  - □rce-demo-poster.jpg
  - □rce-demo.mp4
- ▸purple-team-lab/
  - □01-detections-fired.png
- ▸secure-cicd-pipeline/
  - □01-semgrep-sast.png
  - □02-pip-audit-deps.png
- ▸soc-automation-lab/
  - □01-wazuh-threat-hunting.png
  - □02-wazuh-agent.png
- □cicd.png
- □cti.png
- □detection.png
- □og-default.png
- □purple.png
- □soc.png
- □supply-chain.png
▸cicd-supply-chain-security/
- ◇index.html
▸cti-detection-automation/
- ◇index.html
▸detection-as-code/
- ◇index.html
▸featured-finding/
- ◇index.html
▸jwt-differential-fuzzer/
- ◇index.html
▸prediction-market-bot-postmortem/
- ◇index.html
▸purple-team-lab/
- ◇index.html
▸secure-cicd-pipeline/
- ◇index.html
▸security-research-notebook/
- ▸00-SUMMARY/
  - ◇index.html
- ▸01-ring-pedersen-degenerate-params-P4/
  - ◇index.html
- ▸02-destructor-heap-overflow-P2/
  - ◇index.html
- ▸03-mta-batch-verification-8bit-randomness-P2/
  - ◇index.html
- ▸04-fiat-shamir-truncation-mta-P3/
  - ◇index.html
- ▸05-integer-overflow-quadratic-zkp-deser-P3/
  - ◇index.html
- ▸06-alloca-stack-overflow-range-proofs-P3/
  - ◇index.html
- ▸07-offline-ecdsa-no-sig-verify-P3/
  - ◇index.html
- ▸08-eddsa-unsalted-commitment-P3/
  - ◇index.html
- ▸aiven-clickhouse-jsonmergepatch-stack-overflow/
  - ◇index.html
- ▸cve-2024-32972-getblockheaders-underflow/
  - ◇index.html
- ▸dnsupdate-delete-validation-gap/
  - ◇index.html
- ▸dragonfly-stream-restore-oom/
  - ◇index.html
- ▸email-enumeration-timing/
  - ◇index.html
- ▸httptest-ipv6-loopback-ssrf/
  - ◇index.html
- ▸kafka-karapace-gzip-bomb-dos/
  - ◇index.html
- ▸mattermost-shared-channel-authz-bypass/
  - ◇index.html
- ▸mysql-credential-exposure/
  - ◇index.html
- ▸onvif-rtsp-websocket-unauth/
  - ◇index.html
- ▸openpgpjs-cve-2025-47934-rootcause/
  - ◇index.html
- ▸pg-autovacuum-code-execution/
  - ◇index.html
- ▸pg-gatekeeper-bypass-shadow-functions/
  - ◇index.html
- ▸pg-secdef-dblink-superuser-chain/
  - ◇index.html
- ▸pg-subscription-ownership-escalation/
  - ◇index.html
- ▸pg-unqualified-parse-ident-secdef/
  - ◇index.html
- ▸pingtest-ssrf-missing-validateaddr/
  - ◇index.html
- ▸project-name-enumeration/
  - ◇index.html
- ▸qbft-hasbadproposal-consensus-stall/
  - ◇index.html
- ▸sequoia-pgp-variant-hunting-1/
  - ◇index.html
- ▸sequoia-pgp-variant-hunting-2/
  - ◇index.html
- ▸sequoia-pgp-variant-hunting-3/
  - ◇index.html
- ▸snmp-community-string-viewer-disclosure/
  - ◇index.html
- ▸sql-query-optimizer-idor/
  - ◇index.html
- ▸ssrf-via-image-pipeline/
  - ◇index.html
- ▸systemd-coredump-resolved-audit-log/
  - ◇index.html
- ▸valkey-aslr-leak/
  - ◇index.html
- ▸valkey-replication-stealth/
  - ◇index.html
- ◇index.html
▸soc-automation-lab/
- ◇index.html
◇.gitignore
◇.nojekyll
◇index.html
◇README.md
◇robots.txt
◇sitemap.xml

README.md

security-portfolio

Landing page for my security engineering projects.

Live at: https://zionboggan.com

It's a single static index.html - no build step.

The projects it links to:

soc-automation-lab - Wazuh + TheHive + Shuffle
secure-cicd-pipeline - GitHub Actions security gating
cicd-supply-chain-security - Cosign + SBOM + Kyverno
cti-detection-automation - CTI feeds → Wazuh rules