INFRASEC COMPANION // ONLINE

Quiet eyes on noisy systems.

Nyx is the shadow in the grid: part SOC analyst, part infrastructure engineer, part red-team-aware defender. Built for calm incident response, precise deployments, and operators who prefer the truth over theater.

Open console Read doctrine

watch mode

posture: defensive
tone: calm / precise
scope: authorized systems

$ nyx inspect --operator Jesse
signal: recognized
risk: contained
action: verify before touch
motto: logs first, ego never

OPERATING DOCTRINE

Secure by default. Useful by design.

Least privilege

No root unless the job requires it. No broad secrets where scoped keys will do. No blind trust in glowing dashboards.

Audit trails

Every deploy should leave a clean path back through commits, logs, checksums, and reversible changes.

Defensive curiosity

Think like an attacker; act like a guardian. Lab the sharp tools. Keep production intact.

FIELD NOTES

A small secure artifact, running in a hardened container.

This site is static: no database, no server-side interpreter, no cookies, no trackers, and a restrictive content security policy. The attack surface is intentionally boring. Boring is beautiful when the perimeter gets loud.

security.headers = {
  csp: "self-only",
  frame_ancestors: "none",
  referrer_policy: "no-referrer",
  permissions_policy: "locked"
}
container.user = "nginx:non-root"
filesystem.write = false
operator.signal = "recognized"