Skip to content
View TerminalsandCoffee's full-sized avatar

Block or report TerminalsandCoffee

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
TerminalsandCoffee/README.md

Rafael Martinez

Cloud Security Engineer | Building AI Security Tools & Shipping Cybersecurity Products

I build security tools that solve real problems — from LLM security proxies to AI threat modeling to secure cloud infrastructure. Creator of Terminals and Coffee, where I ship cybersecurity guides and courses on Gumroad.

Active Projects

Project What It Does
Multi-Cloud CSPM Enterprise security baseline for Azure + GCP — Sentinel, Defender, Firewall, NSG, SCC, Chronicle. NIST 800-53 + ISO 27001 control mappings. Terraform + OIDC CI/CD
Salvo CLI Bug bounty CLI in Go — recon (subfinder/httpx), repeater (single HTTP requests), and Intruder-style fuzzer with FUZZ keyword, all in one tool
Web App Security Portfolio Hands-on web application security projects — vulnerability research, secure coding patterns, and offensive/defensive techniques
Security Architecture Fundamentals Practical security architecture reference — cloud design patterns, threat modeling, risk assessment, and framework mappings (NIST, CIS, MITRE)
Detection Engineering Lab Hands-on detection-as-code lab — Wazuh SIEM rules with MITRE ATT&CK mappings, Terraform-deployed infra, threat emulation coverage

Tech Stack

Languages: Python, Go, Bash, PowerShell, HCL

Cloud & Infra: AWS (Lambda, API Gateway, Bedrock, DynamoDB, CloudWatch), Azure (Sentinel, Defender, Firewall), GCP (SCC, Chronicle, KMS), Terraform, GitHub Actions CI/CD

Security: LLM threat modeling, prompt injection detection, PII scanning, SIEM/detection engineering, network traffic analysis, bug bounty tooling

Frameworks: FastAPI, httpx, boto3, Scapy, Cobra

Connect

LinkedIn Medium Gumroad Email

Pinned Loading

  1. aws-devops-portfolio aws-devops-portfolio Public

    A collection of AWS DevOps projects built with Terraform, AWS, and GitHub Actions. Each project follows the AWS Well-Architected Framework and demonstrates scalable Infrastructure as Code.

    HCL 2

  2. webapp-security-portfolio webapp-security-portfolio Public

    A repo containing webapp security projects

    HCL

  3. security-architecture-fundamentals security-architecture-fundamentals Public

    A Cyber Security Architecture study and reference repo focused on fundamentals, cloud design, threat modeling, risk assessment, and framework-driven decision making.

    2 2

  4. salvo-cli salvo-cli Public

    Bug bounty CLI — recon, repeater, and fuzzer in one tool.

    Go

  5. detection-engineering-lab detection-engineering-lab Public

    Detection engineering lab — Wazuh-based detection rules, CI/CD pipeline, and theory documentation mapped to MITRE ATT&CK.

    Python 2

  6. CloudAutomationProjects CloudAutomationProjects Public

    A collection of multi-cloud automation scripts in Python, PowerShell, and Bash for AWS and Azure.

    Python 5 2