Digital Products for DevOps and IT Pros
Templates, guides, and tools built from 25+ years of real-world systems engineering. Practical solutions you can use today.
Templates, guides, and tools built from 25+ years of real-world systems engineering. Practical solutions you can use today.
A fillable AD audit checklist covering privileged access, stale accounts, GPO hygiene, MFA gaps, and event log review — everything an auditor expects, packaged for the sysadmin who has no security team.
Downloadable Markdown + YAML policy templates giving IT teams the acceptable-use, blast-radius, approval-gate, and logging scaffolding to safely deploy agentic AI coding tools like Claude Code, Codex, and Grok Build.
For DevOps and platform engineers with a real migration deadline — the complete Claude Code workflow you'd otherwise spend months reverse-engineering.
A developer's guide to designing safe AI chatbot account recovery flows, using the Meta/Instagram breach as a live case study.
A practical guide for IT managers and sysadmins who must now choose between Claude Code, Grok Build, and the Gemini CLI replacement (Antigravity) — covering security posture, cost modeling, data residency, and a scored comparison worksheet for team deployment.
The IT manager's professional toolkit for evaluating and responding to AI-generated project proposals — with data, not drama.
Stop prompting. Deploy agents that work while you sleep.
For adults who want one clear, useful AI win — no tech background, no jargon, no wasted afternoon.
A plain-English walkthrough for adults 60+ who want to get real value out of their phone's built-in AI assistant — no apps, no jargon, no tech background required.
For mid-to-late-career professionals who want practical AI skills that apply to their actual job — without starting over from scratch.
50 AI prompts built for ops teams — bash scripts, K8s debugging, Terraform, CI/CD, incident triage, all tested, none generic
A practical guide for IT teams to recognize and block malware distributed through AI shared-chat features, plus ready-to-use organizational AI usage-policy templates.
A practical framework for engineering teams and IT managers to audit, right-size, and optimize spending across Claude API, GitHub Copilot AI Credits, and other metered AI tools — with a cost-per-PR calculator and decision matrix included.
12 production Ansible playbooks for Linux sysadmins — annotated, tested, ready to run.
14 production-ready PowerShell 7 scripts for vSphere admins — built for Broadcom VCF.PowerCLI, ships-to-vCenter ready.
The Linux sysadmin's go-to bash reference — patterns, variables, loops, and practical automation scripts in one printable guide.
A practical guide and checklist bundle for engineering teams whose human release-approval processes have become the rate-limiting step after AI floods their repos with code.
Both Anthropic and OpenAI shipped AI vulnerability scanners this month — here's the copy-paste GitHub Actions workflow, per-PR cost math, and false-positive triage playbook that turns them into something you'd actually merge against.
A practical guide + reusable templates for IT teams inheriting Claude-powered workflows from consultants — covering security posture, data governance, API integration patterns, and shadow AI governance.
A teachable ASTGL guide + lightweight demo showing how to use Claude Code and the Claude API for AI-assisted vulnerability scanning on your own projects — bringing Mythos-level thinking to solo developers.
For solo Mac Studio developers who want a structured, repeatable Claude Code workflow — not another tutorial that resets every session.
Master cron, systemd timers, and at jobs in one printable reference — syntax cards, real-world job examples, and a safety checklist so you never fat-finger a production schedule again.
A read-only Bash toolkit + concise PDF runbook that produces a single Markdown report mapping every cron job on a Linux host — what runs, when, where it logs, and which schedules overlap. Translates cryptic cron expressions into plain English. No installs touched.
Your SOC 2 audit prep doesn't need a $10,000 tool — it needs this spreadsheet and three policy stubs.
A standardized Python benchmark suite with a simple results dashboard that lets Mac Studio and local LLM users compare DeepSeek V4, Ollama models, and Claude API on real-world coding, reasoning, and agentic tasks.
For mid-level IT professionals with 3–7 years of operations experience who are ready to move into a DevOps or Cloud Engineer role — and want a clear, opinionated path to get there in 2026.
Crack your DevOps/SRE interview in a weekend — scenario frameworks, K8s commands, CI/CD walkthroughs, and behavioral answers all in one cheat sheet bundle.
Land your next DevOps or SRE role faster — ATS-optimized resume templates, 2026 keyword lists, and scenario-based interview frameworks in one career bundle.
For sysadmins and SREs managing 1–10 domains who need a nightly heads-up when a record quietly changes under them.
Transform your dev-grade Docker Compose stacks into production-ready deployments with security configs, resource limits, health checks, and secrets management — all annotated and ready to drop in.
A practical guide + checklist bundle for IT admins migrating on-premises Active Directory to Microsoft Entra ID in 2026 — covering Cloud Sync, legacy auth deprecation, Intune join strategy, and a phased migration checklist sysadmins can actually execute.
A practical guide and policy template bundle for sysadmins implementing Microsoft Entra ID Zero Trust — Conditional Access policies, MFA rollout, Privileged Identity Management basics, and a 30-day activation roadmap.
Show experienced sysadmins how their real-world deployment skills map directly to the fastest-growing AI-era role — Forward-Deployed Engineer — and give them a concrete path to land one at $200K+.
A Day-1 quickstart toolkit for IT admins managing Android fleets when Google's Gemini Intelligence — an OS-level agent layer expected to ship at I/O 2026 (May 19) — auto-updates onto corporate devices. Covers what the agent accesses, what admin-console policies control it, and how to size the blast radius before fleet rollout. Output is a copy-pasteable kit: policy decision tree, three-scenario playbook (legal, healthcare, general enterprise), Day-1 checklist, CISO memo template.
10 annotated GitHub Actions workflow YAML files purpose-built for IT ops tasks — automated patch checks, server health pings, backup validation notifications, SSL cert expiry alerts, and dependency audits — with a setup guide for sysadmins who've never touched CI/CD.
A free web calculator that estimates your monthly GitHub Copilot cost under the new metered AI Credits billing model based on your actual usage patterns.
For DevOps engineers and sysadmins who need to stand up a declarative GitOps pipeline without spending a week in documentation rabbit holes.
Ship centralized log aggregation in an afternoon — a Docker Compose Loki + Promtail + Grafana stack, annotated configs, a LogQL cheat sheet, and a 15-page setup guide.
Your first homelab in a weekend — no rabbit holes required.
Plan, test, and document your homelab disaster recovery — so you're not rebuilding from scratch when your NAS fails at 2AM
Expand beyond the published v1 with automated backup validation scripts, tested restoration runbooks, and a DR drill scoring rubric for homelabs running Proxmox, TrueNAS, and containerized services.
Set up a full self-hosted homelab this weekend — hardware picks, Proxmox setup, and 5 services running before Monday
Get your first 50 devices managed in Intune this week — policies, enrollment, and troubleshooting, without the Microsoft docs maze.
The complete incident lifecycle template bundle — detect, triage, resolve, post-mortem, ready in minutes
Run your first IR tabletop without hiring a red team.
Escape tutorial hell for sysadmins — five hands-on homelab projects (monitoring, automation, DR, networking, security) with guided specs, code stubs, and a 30-day progress tracker.
Structured templates for capturing and handing off institutional IT knowledge when someone leaves — access deprovisioning checklist, system ownership matrix, undocumented-workaround interview guide, and a 30-day successor onboarding plan.
A structured checklist and scoring rubric for IT managers evaluating vendor AI clauses — data retention, model training rights, liability, and exit terms — before signing SaaS contracts that now bundle AI features by default.
A reusable template bundle — agenda, scoring rubric, TCO spreadsheet, and follow-up email pack — that gives IT managers a structured, repeatable process for evaluating and presenting vendor decisions to leadership.
Stand up a 3-node k3s cluster on your homelab hardware in an afternoon — annotated manifests, Helm quickstart, persistent storage config, and a troubleshooting cheat sheet for the ops engineer graduating from Docker Compose.
A buyer's guide and cost-calculator worksheet for developers choosing between frontier and open-weight models on OpenRouter — showing when Kimi K2.6, DeepSeek, and Claude trade off on quality, speed, and price per task.
Annotated Helm chart templates and a kubectl cheat sheet that let a sysadmin deploy their first K8s workload without reading three docs sites.
The kubectl + Helm reference kit every DevOps engineer bookmarks — annotated YAML starters, command cheat sheets, and troubleshooting flowcharts in one printable bundle.
A printable PDF runbook with visual decision trees for the 15 most common Kubernetes failures — CrashLoopBackOff, ImagePullBackoff, pending pods, OOMKilled, and more — turning a 45-minute debug spiral into a 5-minute checklist.
For junior-to-mid Linux sysadmins, cert studiers, and homelab operators who want organized command references — not another tab of man pages.
A local-first CLI tool that consolidates and compresses agent memories between sessions using Ollama and SQLite — persistent cross-session memory with zero cloud dependencies.
A concise PDF + Bash-toolkit field manual for sysadmins managing 5–50 Mac endpoints WITHOUT a full MDM (Jamf/Kandji/Mosyle). Read-only inventory scripts (hardware, OS, FileVault, Gatekeeper, XProtect, login items, software updates) plus a triage workflow that produces a single Markdown fleet-health report per host.
A CLI scanner that reads local MCP server configs and emits a Markdown + JSON audit report covering tool surface area, auth methods, and blast radius.
A hands-on guide for sysadmins and IT pros to deploy, configure, and secure local MCP servers — covering tool selection, auth patterns, network exposure controls, and integration with Claude Code and local LLMs.
A hands-on tutorial and code walkthrough showing how to wire a local Ollama MCP server behind an outbound-only encrypted tunnel — no public IP, no inbound firewall rules, yet agents still reach private enterprise tools.
Set up 5 real IT automation workflows in n8n — monitoring alerts, backup notifications, incident tickets, health checks, and report generation — all with downloadable JSON.
Survive and improve every on-call rotation — runbook templates, alert triage flowcharts, escalation scripts, and a post-incident review framework in one downloadable bundle.
Deploy OpenClaw without putting your machine at risk — a sysadmin-grade security hardening guide.
A read-only Bash toolkit that inventories every listening TCP/UDP port on a Linux host, maps it to the owning process and unit, diffs against an expected baseline you declare once, and flags silent drift — new listeners, moved ports, processes that used to bind 127.0.0.1 but now bind 0.0.0.0, unit files whose ExecStart changed. Runs nightly, diffs visibly. Catches the 'who opened 8080?' question before the pen-tester does.
20 production-ready PowerShell scripts for the Windows sysadmin who automates everything.
Deploy Prometheus + Grafana in 30 minutes — 5 import-ready dashboards, annotated configs, and a PromQL cheat sheet bundled together.
Detect injected instructions in fetched content, audit tool call chains, and run agentic workflows safely — the prompt injection defense guide Anthropic hasn't written yet.
Stop piecing together blog posts. Migrate from VMware and run Proxmox right.
Plain-English Substack explainer of recursive reasoning architectures — what they are, why they're having a moment, and what they mean for the models you already use every day.
Ship Docker containers with confidence — a checklist bundle covering image hardening, secrets management, registry scanning, and production rollback, all in PDF + Markdown + GitHub-ready templates.
Harden your servers in one afternoon — the Linux + Windows security checklist built for solo sysadmins who can't afford to get this wrong
A practical toolkit for mid-career sysadmins ready to stop accepting stagnant pay and start making data-backed decisions about their compensation and career.
Find every stale SSH key across your server fleet in under 10 minutes — read-only, agentless, Bash 3.2+ compatible.
Schedule and automate Substack Notes posts with a native desktop app — no browser required
A read-only Bash toolkit that maps every sudo privilege on a Linux host — who can run what, which NOPASSWD rules exist, which aliases resolve to root, and which include-files shadow the main sudoers. One Markdown report, zero writes. Finds the "we'll clean that up later" grants buried in /etc/sudoers.d/.
The documentation starter pack every sysadmin wishes they'd had on Day 1.
10 annotated Terraform/OpenTofu configs for AWS and Azure — get from zero to running infrastructure in one afternoon.
The homelab kit that gets you the job — working Terraform modules, a K8s cluster setup guide, and the interview narrative to prove you built it.
For mid-career sysadmins rebuilding cloud-relevant skills — a complete, working IaC project you can run today and talk about in interviews tomorrow.
A read-only script that scans your fleet's listening TLS ports, extracts every cert in use, and produces a dated report ranking each by days-to-expiry, SANs, issuer, and chain health. Catches the self-signed cert your predecessor installed on the internal API three years ago before it breaks prod on a Sunday.
For Linux sysadmins and SREs who need a defensible account inventory before an audit, an offboarding sweep, or a compliance review — without touching a single file on the server.
Step-by-step migration playbook for moving Windows and Linux VMs from ESXi to Proxmox VE — covering OVA/OVF export, storage migration, network reconfiguration, and post-migration validation checks.
A practical reference guide covering the 20 most critical Windows Event IDs every sysadmin must monitor — with detection logic, triage steps, and copy-paste PowerShell queries for each.
For solo sysadmins and small IT teams managing Windows Server patching at SMBs — a practical guide and checklist bundle that turns a monthly fire drill into a repeatable process.