External Resources
Blogs, videos, and documentation referenced throughout the roadmap and weekly labs.
Platform Proxmox & OPNsense
- Proxmox VE documentation: Official install and networking guides.
- Proxmox homelab blog posts: Community write‑ups on building homelabs with Proxmox.
- OPNsense documentation: Install, interface assignment, and firewall rules.
- OPNsense YouTube walkthroughs: Visual guides for initial setup and segmentation.
Windows & AD Identity & access
- Microsoft AD DS docs: Installing AD, DNS, and promoting a domain controller.
- GPO hardening guides: Baseline password and lockout policies.
- Sysmon configuration: Popular community Sysmon configs for rich Windows telemetry.
SIEM & Detection Wazuh / Elastic / Splunk
- Wazuh quickstart: All‑in‑one install and agent deployment.
- Elastic Stack security docs: Beats, ingest pipelines, and detection rules.
- Splunk free & docs: Install, data onboarding, and search language basics.
- Detection engineering blogs: Writing rules for failed logons, PowerShell abuse, and LOLBins.
Offense & SOC Kali, SOC labs, and IR
- Kali Linux docs: Basic usage, Nmap, and common tools.
- Virtual SOC lab write‑ups: Community guides on building SOC‑style homelabs.
- Incident response lifecycle: NIST and SANS IR process references.
- Threat hunting blogs: Hypothesis‑driven hunts and SIEM queries.