Skip to content
View cgfixit's full-sized avatar

Block or report cgfixit

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
CGFixIT/README.md

Website LinkedIn Email


Domain Clusters

Projects across backup & DR, security and detection tooling, local LLM/RAG, and Windows automation. They're grouped into clusters below. A few reuse each other across cluster lines — for example, the YARA rules that scan restore points also feed the prompt-injection filter in the RAG agent.

Interactive domain map — the diagram below is a static version of the same map.

           Security / Detection
               YARA rules · PS1 scanner
               onion-link detection · OWASP
                        │
            ── BRIDGE ──┤── BRIDGE ──
        YARA pre-restore │  YARA → prompt injection
        malware-aware DR │  pattern defense for LLMs
                        │
  Backup & DR ───────┼─────── Local LLM / RAG
  Veeam VBR             │        LangGraph · ChromaDB
  proxy lifecycle       │        BM25+RRF · Ollama
  health-check ops      │        offline-first
                        │
            ── BRIDGE ──┤── BRIDGE ──
    VBR telemetry → AI  │  topology = policy enforcement
    remediation agents  │  soul governance · SQLite
                        │
              AI Safety / Agent Governance
                  CyClaw · soul drift detection
                  SHA-256 integrity · MCP server
                        │
              Automation / Sysadmin (substrate)
              PowerShell · SCCM · WinRM · VMware

Projects by Cluster

AI Agents & Safety

Repo What it does Stack
CyClaw Offline-first RAG agent built on LangGraph — the graph topology enforces the security policy rather than relying on prompt instructions. Hybrid retrieval (ChromaDB + BM25+RRF), OWASP-aligned sanitization, and a local MCP server; runs fully air-gapped. Python LangGraph ChromaDB FastAPI SQLite
AzureAI-CopilotStudio-PersonalAgent-Instructions System-instruction templates for enterprise AI agents: tiered source hierarchy, anti-hallucination safeguards, and reference patterns (including VeeamGPT). Azure OpenAI Copilot Studio Prompt Engineering

Security / YARA Detection

Repo What it does Stack
Veeam-PS1-Scanner-Yara-Rule-Detection-Onion-Links YARA ruleset + PowerShell scanner that detects Tor .onion C2 infrastructure, BTC/XMR ransomware payment addresses, and common command-and-control patterns inside Veeam restore points. Outputs SIEM-ready JSON and integrates with Secure Restore workflows. PowerShell YARA Veeam Forensics

Backup & DR Operations

Repo What it does Stack
sccm-veeam-proxy-patching Graceful Veeam proxy drain during SCCM patch windows: WinRM service management, pre/post task sequencing, and exit code 3010 (reboot-pending) handling so patch reboots don't fail in-flight backup jobs. PowerShell SCCM VMware Veeam
Veeam-HealthCheck-Simplifier Parses Veeam health-check CSV/JSON, generates PowerShell remediation actions, and sends notifications to Salesforce/Slack/Teams. Python Veeam Analytics

Automation / Scripting

Repo What it does Stack
PolyMarket_Mimic_Trader Async event-driven bot that mirrors the highest-ROI Polymarket wallets in real time. Ranks traders by a risk-adjusted score, enforces configurable bankroll and stop-loss rules, logs to Prometheus/Grafana, and writes an append-only SQLite ledger. Includes dry-run/back-test mode. Python asyncio GraphQL SQLite
Scrape-n-Email Scraper for news + job digests (RealClearPolitics headlines + Atlanta Craigslist sysadmin roles). MIME-safe email delivery, formula-safe CSV handling, cross-platform logging, and offline testability. Python BeautifulSoup SMTP

Stack at a Glance


Currently Building

  • CyClaw — active development; LangGraph topology rewrite + OPA/Rego policy layer

Atlanta, GA · Infrastructure & security engineering

Pinned Loading

  1. CyClaw CyClaw Public

    CyClaw is a secure, offline-first local AI agent built on three invariants: RAG-first retrieval, LangGraph topology as security policy - https://cgfixit.com/CyClaw - https://bit.ly/CyClawDemo

    Python 13

  2. sccm-veeam-proxy-patching sccm-veeam-proxy-patching Public

    Veeam-VBR PowerShell + SCCM: Prevent backup job failures during patch windows. SCCM-integrated or can be ran as standalone from VBR

    PowerShell

  3. AzureAI-CopilotStudio-PersonalAgent-Instructions AzureAI-CopilotStudio-PersonalAgent-Instructions Public template

    Azure OpenAI Copilot Studio Personal Agent - Production-tested system instructions for enterprise AI agents

    Shell 1 1

  4. Veeam-HealthCheck-Simplifier Veeam-HealthCheck-Simplifier Public

    Veeam Backup & Replication Health Check analyzer — CSV/JSON input, PowerShell remediation output, Salesforce/Slack integration.

    Python

  5. Veeam-PS1-Scanner-Yara-Rule-Detection-Onion-Links Veeam-PS1-Scanner-Yara-Rule-Detection-Onion-Links Public

    Powershell Scanner for malware via a collection of YARA rules designed to detect Tor `.onion` links, ransomware payment portals, and C2 (command-and-control) configurations commonly found in ransom…

    PowerShell

  6. PolyMarket_Mimic_Trader PolyMarket_Mimic_Trader Public

    Polymarket_Mimic_Trader is a tool for interacting with Polymarket - This Python bot studies the best trading bots on Polymarket then sets very conservative thresholds for buy/sell

    Python 2