Digital Products for DevOps and IT Pros
Templates, guides, and tools built from 25+ years of real-world systems engineering. Practical solutions you can use today.
Templates, guides, and tools built from 25+ years of real-world systems engineering. Practical solutions you can use today.
Downloadable Markdown + YAML policy templates giving IT teams the acceptable-use, blast-radius, approval-gate, and logging scaffolding to safely deploy agentic AI coding tools like Claude Code, Codex, and Grok Build.
For DevOps and platform engineers with a real migration deadline — the complete Claude Code workflow you'd otherwise spend months reverse-engineering.
12 production Ansible playbooks for Linux sysadmins — annotated, tested, ready to run.
14 production-ready PowerShell 7 scripts for vSphere admins — built for Broadcom VCF.PowerCLI, ships-to-vCenter ready.
The Linux sysadmin's go-to bash reference — patterns, variables, loops, and practical automation scripts in one printable guide.
A practical guide and checklist bundle for engineering teams whose human release-approval processes have become the rate-limiting step after AI floods their repos with code.
Both Anthropic and OpenAI shipped AI vulnerability scanners this month — here's the copy-paste GitHub Actions workflow, per-PR cost math, and false-positive triage playbook that turns them into something you'd actually merge against.
A teachable ASTGL guide + lightweight demo showing how to use Claude Code and the Claude API for AI-assisted vulnerability scanning on your own projects — bringing Mythos-level thinking to solo developers.
For solo Mac Studio developers who want a structured, repeatable Claude Code workflow — not another tutorial that resets every session.
A read-only Bash toolkit + concise PDF runbook that produces a single Markdown report mapping every cron job on a Linux host — what runs, when, where it logs, and which schedules overlap. Translates cryptic cron expressions into plain English. No installs touched.
A standardized Python benchmark suite with a simple results dashboard that lets Mac Studio and local LLM users compare DeepSeek V4, Ollama models, and Claude API on real-world coding, reasoning, and agentic tasks.
For sysadmins and SREs managing 1–10 domains who need a nightly heads-up when a record quietly changes under them.
Transform your dev-grade Docker Compose stacks into production-ready deployments with security configs, resource limits, health checks, and secrets management — all annotated and ready to drop in.
10 annotated GitHub Actions workflow YAML files purpose-built for IT ops tasks — automated patch checks, server health pings, backup validation notifications, SSL cert expiry alerts, and dependency audits — with a setup guide for sysadmins who've never touched CI/CD.
For DevOps engineers and sysadmins who need to stand up a declarative GitOps pipeline without spending a week in documentation rabbit holes.
Ship centralized log aggregation in an afternoon — a Docker Compose Loki + Promtail + Grafana stack, annotated configs, a LogQL cheat sheet, and a 15-page setup guide.
Expand beyond the published v1 with automated backup validation scripts, tested restoration runbooks, and a DR drill scoring rubric for homelabs running Proxmox, TrueNAS, and containerized services.
Escape tutorial hell for sysadmins — five hands-on homelab projects (monitoring, automation, DR, networking, security) with guided specs, code stubs, and a 30-day progress tracker.
Stand up a 3-node k3s cluster on your homelab hardware in an afternoon — annotated manifests, Helm quickstart, persistent storage config, and a troubleshooting cheat sheet for the ops engineer graduating from Docker Compose.
Annotated Helm chart templates and a kubectl cheat sheet that let a sysadmin deploy their first K8s workload without reading three docs sites.
The kubectl + Helm reference kit every DevOps engineer bookmarks — annotated YAML starters, command cheat sheets, and troubleshooting flowcharts in one printable bundle.
A local-first CLI tool that consolidates and compresses agent memories between sessions using Ollama and SQLite — persistent cross-session memory with zero cloud dependencies.
A concise PDF + Bash-toolkit field manual for sysadmins managing 5–50 Mac endpoints WITHOUT a full MDM (Jamf/Kandji/Mosyle). Read-only inventory scripts (hardware, OS, FileVault, Gatekeeper, XProtect, login items, software updates) plus a triage workflow that produces a single Markdown fleet-health report per host.
A CLI scanner that reads local MCP server configs and emits a Markdown + JSON audit report covering tool surface area, auth methods, and blast radius.
A hands-on tutorial and code walkthrough showing how to wire a local Ollama MCP server behind an outbound-only encrypted tunnel — no public IP, no inbound firewall rules, yet agents still reach private enterprise tools.
A read-only Bash toolkit that inventories every listening TCP/UDP port on a Linux host, maps it to the owning process and unit, diffs against an expected baseline you declare once, and flags silent drift — new listeners, moved ports, processes that used to bind 127.0.0.1 but now bind 0.0.0.0, unit files whose ExecStart changed. Runs nightly, diffs visibly. Catches the 'who opened 8080?' question before the pen-tester does.
20 production-ready PowerShell scripts for the Windows sysadmin who automates everything.
Deploy Prometheus + Grafana in 30 minutes — 5 import-ready dashboards, annotated configs, and a PromQL cheat sheet bundled together.
Ship Docker containers with confidence — a checklist bundle covering image hardening, secrets management, registry scanning, and production rollback, all in PDF + Markdown + GitHub-ready templates.
Find every stale SSH key across your server fleet in under 10 minutes — read-only, agentless, Bash 3.2+ compatible.
A read-only Bash toolkit that maps every sudo privilege on a Linux host — who can run what, which NOPASSWD rules exist, which aliases resolve to root, and which include-files shadow the main sudoers. One Markdown report, zero writes. Finds the "we'll clean that up later" grants buried in /etc/sudoers.d/.
10 annotated Terraform/OpenTofu configs for AWS and Azure — get from zero to running infrastructure in one afternoon.
The homelab kit that gets you the job — working Terraform modules, a K8s cluster setup guide, and the interview narrative to prove you built it.
For mid-career sysadmins rebuilding cloud-relevant skills — a complete, working IaC project you can run today and talk about in interviews tomorrow.
A read-only script that scans your fleet's listening TLS ports, extracts every cert in use, and produces a dated report ranking each by days-to-expiry, SANs, issuer, and chain health. Catches the self-signed cert your predecessor installed on the internal API three years ago before it breaks prod on a Sunday.
For Linux sysadmins and SREs who need a defensible account inventory before an audit, an offboarding sweep, or a compliance review — without touching a single file on the server.
A practical reference guide covering the 20 most critical Windows Event IDs every sysadmin must monitor — with detection logic, triage steps, and copy-paste PowerShell queries for each.