This project is under heavy construction as of July 2024. After a brief hiatus in the spring of 2024 due to work/life/hobby balance, I'm now resuming and making significant updates. Upcoming changes include documentation fixes, incorporating AI tools, and adding a Kubernetes cluster.
Welcome to my Home Lab documentation! Here, I document my journey setting up my home lab using mostly free and open-source software. You can follow this documentation on my personal website and my YouTube channel.
This repo documents my homelab and how I have it set up. It is under constant construction as I build, tear down, rebuild, automate, write it out as code (IAC: Terraform/Ansible), and figure out what works best for me and my lab environment.
Date | Description |
---|---|
December 2023 | Initial Project |
January 2024 | Software/Hardware Changes |
Mid January 2024 | Added GitHub Actions workflow to upload logs to SIEM |
End January 2024 | Major script overhaul |
Mid June 2024 | Homelab overhaul: Removed old node, added three new nodes, incorporated Ollama and OpenWebUI |
Early July 2024 | Reintroduced Terraform, replacing Ansible for IaC |
August 2024 | Restructured folders for better layout. Lower-cased everything except README.md |
September 2024 | Downsized lab - Too much power and not enough utilization currently, Implemented private repo to public repo push for self hosted github runners |
For my HomeLab I am using:
Proxmox - Hypervisor/VM host - "Discovery"
NAS/Hyperconverged PC - "Enterprise"
Purpose | Software | Link |
---|---|---|
Initial Code Scan | pre-commit | https://pre-commit.com/ |
Hypervisor | Proxmox | https://www.proxmox.com/ |
Containers | Docker | https://www.docker.com |
Security Platform/Vuln Scanner | Wazuh | https://wazuh.com/ |
Identity and Authentication | FreeIPA | https://www.freeipa.org/ |
SCM | GitHub | https://www.github.com/ |
Secrets Storage/Cert Management | Hashicorp Vault | https://hashicorp.com/ |
Pipeline/automation | Github Actions | https://docs.github.com/en/actions |
SIEM/Logging | Splunk | https://www.splunk.com/ |
SOAR/Incident Response | The Hive | https://thehive-project.com/ |
Malware Information Sharing/OSINT | MISP | https://www.misp-project.org/ |
SAST | Semgrep | https://www.semgrep.dev/ |
DAST | OWASP ZAP | https://www.zaproxy.org/ |
IAST/Runtime | Falco | https://falco.org/ |
Open Source Large Language Model Tool | Ollama | https://ollama.com/ |
Web UI for Large Language Models/API's | OpenWebUI | https://openwebui.com/ |
Last Edited: July 2024
Terraform will manage IaC, while Ansible will handle software and configuration provisioning post-Terraform application.
These scripts provision the VMs created by the terraform folder.
This folder contains docker-compose.yml scripts for various VMs.
(TBD)
(TBD)
(TBD)