ANTHONY GUZMAN
● OPEN TO WORK
AG
//
Available · Cybersecurity Roles

Hi, I'm Anthony Guzman.

Cybersecurity advocate + automation builder.

Florida-based cybersecurity advocate with 4 years of hands-on self-study across endpoint security, threat analysis, and network defense — plus 2 years running self-hosted infrastructure on Proxmox. I build segmented networks, AI-driven automation pipelines, and tools that solve real problems.

— More about how I think →
4+
YRS STUDYING CYBERSECURITY
2
YRS PROXMOX SELF-HOSTED INFRA
FL
LLC BUSINESS OWNER
USAF
ASPIRING AIRMAN
See selected work
LinkedInGitHub
scroll
§ 00
CURRENTLY
SAVING FOR
DEF CON 34 — Las Vegas
BUILDING
24U rack homelab on Proxmox
STUDYING
CompTIA Security+ · Network+
PURSUING
US Air Force enlistment
RUNNING
AI lead-gen pipeline on-prem
§ 00.1
PREVIOUSLY
Portfolio V1
SHELVED · CODE ARCHIVED
What it was

My first attempt at a personal site — same goal as this one, different execution. Built it solo, never deployed, never linked it anywhere.

Why I stopped

Got the structure wrong before I got the content right. Spent more time picking frameworks than writing about what I actually do. The homepage was 90% scaffolding and 10% me.

What it taught me

Content drives layout, not the other way around. This version started from the question of what a recruiter needs to know in 30 seconds, and the structure followed. The code is still in a private repo — not because it's worth shipping, but because deleting it would erase the part of the story that made this one possible.

[ V2 is what you’re reading. ]
§ 01
INTERESTS · SIDE QUESTS
// OFF-HOURS
DEF CON 34
— Las Vegas
ALSO INTO
  • Homelab tinkering
  • CTF challenges (HTB, THM)
  • Hardware hacking
  • Privacy & opsec
READING
“The Cuckoo's Egg”
by Cliff Stoll

Things I'm building, studying, and planning to build. Marked clearly so you can tell what's shipped from what's still on the whiteboard.

01// PLANNED

USB Rubber Ducky Clone

HARDWAREOFFSECUSB-HID

Turns regular USB drives into HID injection devices. Custom payload encoder, DuckyScript v2 compatible — no specialized hardware required.

02// BUILT

Port Scanner

NETWORKPYTHONSCAPY

Built to understand port-scanning fundamentals from scratch — concurrent TCP/UDP probing, banner grabbing, and service fingerprinting. The real Nmap is better; this taught me what Nmap is actually doing.

03// IN BUILD

Honeypot Deployment

DEFENSECOWRIETPOT

T-Pot honeypot stack on a dedicated VLAN, feeding attacker telemetry into Wazuh for analysis. Public IP, real traffic.

04// PLANNED

Dark Web Intel Monitor

OSINTTORPYTHON

Onion-routed crawler monitoring paste sites for credential leaks relevant to clients. Indexed locally in Postgres for OSINT research.

§ 02
FEATURED BUILD · IN PRODUCTION

A zero-trust home lab, designed and deployed solo.

IN BUILD·REV 1·DWG AG-001
NETWORK TOPOLOGY · TAP TO EXPAND

Built from the ground up on a single Proxmox node, this homelab runs a segmented network with Cloudflare fronting all public traffic. Caddy handles automatic TLS and reverse proxying. Every service lives in its own LXC container — isolated, lightweight, and purpose-built.

  • 01.Proxmox VE with LXC container isolation
  • 02.Cloudflare Tunnel — no exposed ports on the host
  • 03.Caddy for automatic TLS + reverse proxy
  • 04.Wazuh SIEM for log aggregation and alerting
  • 05.pfSense firewall for network segmentation and VLAN isolation
  • 06.Uptime Kuma for service monitoring
§ 03
SELECTED PROJECTS
01IN PRODUCTION

Self-Hosted AI Agent Pipeline

AUTOMATIONAIPROXMOX

n8n-based workflow that automates real estate lead qualification and follow-up using LLM agents running on-prem.

n8nPythonOllamaProxmox
02IN PRODUCTION

Zero-Trust Home Lab

SECURITYINFRA

Proxmox-hosted homelab with Cloudflare Tunnel, Caddy reverse proxy, Wazuh SIEM, and Pi-hole DNS filtering.

ProxmoxCloudflareCaddyWazuhPi-hole
03PLANNED

Real Estate Lead Pipeline

AUTOMATIONREAL ESTATEDATA

End-to-end wholesale lead system: MLS data ingestion, AI-powered qualification scoring, and automated follow-up sequences — all running on self-hosted infra.

n8nPostgresPythonOllama
04SHIPPED

This Portfolio

WEBINFRA

Personal portfolio site built with Next.js, self-hosted on Proxmox behind a Cloudflare Tunnel. Cursor-tracked spotlight, animated topology diagram, zero third-party analytics.

Next.jsTypeScriptTailwindFramer Motion
§ 04
SKILLS & TOOLING
// HANDS-ON
// WORKING
// LEARNING
— honest self-assessment, not marketing
Offensive / Red Team
  • Nmap// WORKING
  • Wireshark// WORKING
  • Burp Suite// LEARNING
  • Metasploit// LEARNING
  • OWASP Top 10// WORKING
  • HID Injection// LEARNING
Defensive / Blue Team
  • Wazuh SIEM// HANDS-ON
  • EDR (endpoint)// HANDS-ON
  • Application Allowlisting// HANDS-ON
  • pfSense / Firewall// HANDS-ON
  • Pi-hole DNS// HANDS-ON
  • Fail2ban// WORKING
Infrastructure
  • Proxmox VE// HANDS-ON
  • LXC Containers// HANDS-ON
  • Docker// HANDS-ON
  • Linux// HANDS-ON
  • Caddy// HANDS-ON
  • Networking / VLANs// WORKING
Cloud & Identity
  • Cloudflare Tunnel// HANDS-ON
  • Cloudflare// HANDS-ON
  • OAuth / OIDC// LEARNING
  • IAM concepts// WORKING
  • Zero-Trust model// WORKING
Automation
  • n8n Workflows// HANDS-ON
  • AI Agent Pipelines// HANDS-ON
  • API Integrations// HANDS-ON
  • Python scripting// HANDS-ON
Programming & Tools
  • Python// HANDS-ON
  • Linux / Bash// HANDS-ON
  • PowerShell// WORKING
  • TypeScript// LEARNING
  • SQL / Postgres// WORKING
  • Git// HANDS-ON
Currently studying / pursuing
CompTIA Security+CompTIA Network+Florida Real Estate LicenseUS Air Force — Enlisting
§ 05
GET IN TOUCH

Let's work together .

Cybersecurity roles, contract work, or just a conversation about security and automation.

LINKEDINanthony-guzman-845