{"id":297,"date":"2022-07-29T11:27:48","date_gmt":"2022-07-29T11:27:48","guid":{"rendered":"https:\/\/startersites.io\/blocksy\/beverr\/?post_type=project&#038;p=297"},"modified":"2026-06-05T08:10:37","modified_gmt":"2026-06-05T08:10:37","slug":"augue-lacus-viverra","status":"publish","type":"project","link":"https:\/\/www.l-davis.com\/?project=augue-lacus-viverra","title":{"rendered":"Phantomwall"},"content":{"rendered":"\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/showcase.phantomwalls.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">Showcase<\/a><\/div>\n\n\n\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/demo.phantomwalls.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">Demo<\/a><\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Showcase = public preview (no login)<br>Demo = interactive version (signup\/login + live simulation)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>About This Project<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PhantomWall is a cloud-based cybersecurity demo platform I built to simulate real-world threat activity and show how modern security monitoring works in practice.<br>Users can sign up, log in, deploy a controlled honeypot instance on AWS, run simulated attacks, and view live security telemetry through an interactive dashboard.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This project combines React frontend development, AWS serverless\/backend services, and Terraform infrastructure automation. It includes user authentication with AWS Cognito, EC2 spot-instance lifecycle control, CloudWatch and DynamoDB data pipelines, and real-time alert visualization.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The goal of PhantomWall is to make threat detection and cloud defense easier to understand through hands-on, realistic workflows in a safe demo environment.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Architecture <\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">PhantomWall is architected as a multi-service AWS security simulation stack provisioned with Terraform and segmented by environment tags\/naming for deployment isolation. The frontend is built with React\/Vite and integrates directly with AWS Cognito for authentication flows (signup, email verification, login, password reset), then uses JWT-protected API routes through API Gateway to invoke backend Lambda services.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The backend includes specialized Lambda functions for honeypot provisioning, fleet lifecycle management, attack simulation, Suricata ingest, alert indexing, and automated spot-instance cleanup. Honeypot infrastructure is launched on demand as constrained EC2 spot instances (with per-user limits and auto-termination controls), and telemetry is streamed into CloudWatch\/DynamoDB-backed pipelines for alert generation and dashboard analysis.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Operational controls include IAM least-privilege role scoping, environment-specific resource naming, CloudWatch logging\/alarms, and SES-backed Cognito email delivery. The system is intentionally designed to balance realism (live external traffic, real AWS signals) with demo safety and cost guardrails, providing a practical end-to-end model of cloud-native threat detection workflows.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Showcase = public preview (no login)Demo = interactive version (signup\/login + live simulation) About This Project PhantomWall is a cloud-based cybersecurity demo platform I built to simulate real-world threat activity and show how modern security monitoring works in practice.Users can sign up, log in, deploy a controlled honeypot instance on AWS, run simulated attacks, and [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":425,"parent":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"project-category":[8,7],"class_list":["post-297","project","type-project","status-publish","has-post-thumbnail","hentry","project-category-cloud-security","project-category-cybersecurity"],"blocksy_meta":{"styles_descriptor":{"styles":{"desktop":"","tablet":"","mobile":""},"google_fonts":[],"version":6}},"_links":{"self":[{"href":"https:\/\/www.l-davis.com\/index.php?rest_route=\/wp\/v2\/project\/297","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.l-davis.com\/index.php?rest_route=\/wp\/v2\/project"}],"about":[{"href":"https:\/\/www.l-davis.com\/index.php?rest_route=\/wp\/v2\/types\/project"}],"author":[{"embeddable":true,"href":"https:\/\/www.l-davis.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.l-davis.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=297"}],"version-history":[{"count":5,"href":"https:\/\/www.l-davis.com\/index.php?rest_route=\/wp\/v2\/project\/297\/revisions"}],"predecessor-version":[{"id":436,"href":"https:\/\/www.l-davis.com\/index.php?rest_route=\/wp\/v2\/project\/297\/revisions\/436"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.l-davis.com\/index.php?rest_route=\/wp\/v2\/media\/425"}],"wp:attachment":[{"href":"https:\/\/www.l-davis.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=297"}],"wp:term":[{"taxonomy":"project-category","embeddable":true,"href":"https:\/\/www.l-davis.com\/index.php?rest_route=%2Fwp%2Fv2%2Fproject-category&post=297"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}