Projects
NixOS Infrastructure as Code
Implemented comprehensive Infrastructure as Code repository using NixOS for declarative, version-controlled system management across multiple systems (desktop, laptop, servers, WSL). Created replicable multi-system infrastructure ensuring consistent configurations, security hardening, and automated deployments. Established DRY principles eliminating manual system configuration and enabling instant system rebuilds with full reproducibility.
VPS WireGuard VPN Server with Home Network Integration
Designed and deployed production-grade WireGuard VPN server on a $7/month VPS providing secure remote access to home network resources and serving as self-hosted reverse proxy alternative to Cloudflare Tunnels. Integrated public VPS with private pfSense router via site-to-site WireGuard tunnel enabling bidirectional routing between cloud and on-premises infrastructure. Implemented defense-in-depth security through Fail2Ban, Cloudflare API integration, and Nginx hardening ensuring robust network security architecture.
LeftyWorkout
Engineered containerized full-stack application infrastructure with Rails 8 API and React TypeScript frontend deployed via Docker Compose across multiple environments. Implemented complete infrastructure setup including PostgreSQL database, SMTP configuration, and environment-specific deployments ensuring replicable, secure containerized architecture. Created comprehensive deployment workflow with proper security hardening, database management, and container orchestration enabling consistent deployments across development, test, and production environments.
Personal Scripts Repository
Developed infrastructure automation toolkit with 68+ shell scripts for cross-platform system management, backup infrastructure, maintenance automation, and remote system administration. Created replicable automation solutions for dotfiles management, browser data backups, phone backups, and system maintenance tasks across Linux and macOS. Established systematic approach to infrastructure automation enabling consistent, reliable system management with minimal manual intervention.
Self-Hosted Homelab Infrastructure
Designed and deployed containerized homelab infrastructure with security-first network isolation architecture using Docker Compose. Implemented separate Docker networks for different service categories ensuring defense-in-depth security and network segmentation. Created comprehensive reverse proxy setup with Nginx, automated SSL certificate management, and integrated pfSense firewall with TrueNAS storage for robust, replicable infrastructure.
Spinach Keyboard Framework
Engineered cross-platform configuration-as-code framework providing consistent system integration and keybinding automation across macOS, Linux, and Windows. Implemented multi-layer infrastructure with firmware-level configuration (VIA) and OS-level integration (Karabiner, keyd, AutoHotKey) plus window manager integration (Yabai, Sway/SwayFX). Created TypeScript-based configuration generator for maintainable, type-safe system configuration definitions enabling replicable infrastructure across 3 operating systems with consistent keyboard and window management experience.
SAP Data Pipeline Automation
Engineered Ruby-based ETL infrastructure automation for processing SAP flat files before importing into Bee360 database. Implemented automated data pipeline with data quality validation, error handling, and transformation logic ensuring reliable data integration. Created replicable, maintainable solution eliminating manual data processing and reducing import errors through systematic data validation and transformation workflows.