Skip to main content
Juan Carlos Munera

Projects

Table of Contents

Open Source Security Tools
#

As a systems engineer, GRC analyst, and cybersecurity professional, I build practical tools to solve real-world security and compliance challenges. All projects are open source and available on GitHub.

Tools
#

PCI DSS Toolkit
#

Python Bash PowerShell PCI-DSS Compliance

A collection of read-only scripts that help sysadmins export configuration evidence from network devices, cloud environments, and operating systems for PCI DSS assessor review. No system modifications, just structured, timestamped output ready for your assessor.

Available Now:

  • FortiGate firewall configuration exports (Bash / PowerShell)
  • Palo Alto Networks PAN-OS exports (Python / PowerShell)
  • Cisco IOS/IOS-XE and ASA exports (PowerShell)
  • Microsoft Azure network security exports (PowerShell)
  • Amazon Web Services network security exports (PowerShell)

Coming Soon:

  • Windows and Linux host hardening evidence
  • AWS and Azure identity, access, and logging controls

View Project →

View on GitHub

Intel Hub
#

JavaScript React Node.js WebSocket Threat Intelligence

A real-time intelligence aggregation platform that consolidates cybersecurity, geopolitical, OSINT, dark web, social, and Telegram chat-feed data from 170+ sources into a single dashboard. Zero API keys required. Articles are automatically classified by severity (BREACH/CRITICAL/HIGH/MEDIUM/INFO) and scored across a 4-tier credibility system with 7-category political bias tagging.

Key capabilities:

  • Seven-channel dashboard: Cybersecurity, World News, Geopolitics & Defense, OSINT, Dark Web, Social Media, Chat Feeds
  • Multi-source ingestion: RSS, GDELT, Bellingcat, GitHub Advisories, NVD, Reddit, Mastodon, optional X/Twitter
  • Telegram channel monitoring with automated freshness verification and auto-rotation when channels go inactive
  • Universal Webhook Ingest API for Tasker, iOS Shortcuts, Discord bots, signal-cli, and custom integrations
  • Automated promotional/affiliate spam filtering
  • Configurable SMTP email alerts for high-severity items
  • Docker, native Node.js, and dev deployment paths
  • 90-day data retention with tiered memory compaction for indefinite operation

View Project →

View on GitHub

Why I Build These Tools
#

Coming from systems engineering into GRC and security assessments, I’ve seen how much time gets lost on manual, repetitive work. Whether it’s collecting compliance evidence across dozens of devices or monitoring threat feeds across a dozen platforms, security teams shouldn’t be spending their time on tasks that can be automated reliably.

These projects solve real problems I’ve encountered during assessments and day-to-day security operations. They’re built to be:

  • Practical: solve specific security and compliance challenges, not hypothetical ones
  • Accessible: free and open source
  • Professional: production-ready code with proper documentation
  • Safe: read-only operations where applicable, no unnecessary system modifications

Contributing & Support
#

All projects welcome contributions. If you:

  • Find a bug → Open an issue on the relevant GitHub repo
  • Have a feature request → Start a discussion
  • Want to contribute → Submit a pull request
  • Need help → Reach out directly
Disclaimer: These tools are provided for cybersecurity and compliance purposes. Always follow your organization’s security policies and consult with qualified professionals for production deployments.

2026

Intel Hub

·1033 words·5 mins
Javascript React Node.js Threat-Intelligence Osint Cybersecurity Real-Time Websocket Open-Source Tools Telegram Docker
Overview # Intel Hub is a real-time intelligence aggregation platform that pulls cybersecurity, geopolitical, OSINT, dark web, social media, and Telegram chat-feed data into a single dashboard. It runs across 7 channels and 170+ feeds, with severity classification, 4-tier source credibility scoring, political bias tagging, and a webhook ingest API. No API keys are required to get started.

PCI DSS Toolkit

·1363 words·7 mins
PCI-DSS Python Bash Powershell Compliance Open-Source Tools Network-Security Cloud-Security Fortigate Palo-Alto Cisco Azure Aws
Overview # The PCI DSS Toolkit is a collection of read-only scripts that help sysadmins export configuration evidence from network devices, cloud environments, and operating systems for PCI DSS assessor review. Scripts connect to devices or APIs, export configuration data, and save it locally. No changes are made to any system. juancarlosmunera/pci-tools PCI Tools and Scripts for assessors and sysadmins to aid both in evidence collection and evidence review.