Infrastructure & Automation Projects

Three-source Cato Networks POP health monitoring tool. Combines CMA snapshot API, accountMetrics API, and StatusHub public feed to provide composite health status with Slack and email alerting. Designed to surface real signal beyond what any single API provides.

Toolset for EKS security group remediation using VPC Flow Log analysis. Queries CloudWatch Logs Insights, classifies source IPs into private/public/unknown buckets, and generates remediation recommendations to reduce overly permissive security group rules.

Automated network device configuration compliance auditing framework. Connects to devices via SSH, checks configurations against defined policy baselines, detects drift, and generates operational reports with remediation guidance.

BGP route change detection and alerting tool. Monitors routing tables via SNMP and API polling, detects unexpected prefix withdrawals or announcements, and alerts on-call engineers via configurable notification channels.

Automated user access provisioning and de-provisioning pipeline integrating HR system events with Active Directory, cloud IAM, and network access control. Reduces provisioning time from days to minutes and enforces least-privilege policies.

Terraform modules for consistent network infrastructure baseline deployment across AWS environments. Includes VPC configuration, security group templates, Transit Gateway attachment patterns, and flow log enablement.

Automated compliance reporting pipeline. Collects configuration and access data from network devices, cloud environments, and identity systems, then generates structured compliance reports for audit requirements.

XDR alert enrichment pipeline that automatically augments security alerts with network context — including flow data, DNS resolution history, and asset ownership — before routing to incident response queues.

Network Access Control policy auditing tool. Validates NAC policy consistency across switches and wireless controllers, identifies mismatches between intended and deployed policy, and reports exceptions for remediation.

Lightweight threat intelligence lookup tool for incident response workflows. Queries multiple public and private TI feeds for IP, domain, and hash enrichment, returning aggregated verdicts with confidence scoring.

Operational toolkit for managing hybrid AWS/OCI connectivity. Includes route validation scripts, connectivity health checks, and observability dashboards for multi-cloud networking environments.

Network traffic cost attribution tool for AWS environments. Analyzes VPC flow data and cross-AZ/cross-region transfer patterns to identify cost optimization opportunities and attribute data transfer costs to workloads.

Tooling developed during enterprise SASE migration. Includes user migration tracking, policy validation, rollback scripts, and operational runbooks for managing large-scale VPN-to-SASE transitions.