Skip to content
View Thomas2500's full-sized avatar
🇦🇹
🇦🇹
20 followers · 37 following

Achievements

Achievement: YOLOAchievement: StarstruckAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Shark

Achievements

Achievement: YOLOAchievement: StarstruckAchievement: Public SponsorAchievement: Arctic Code Vault ContributorAchievement: Pull Shark

Highlights

Block or report Thomas2500

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Thomas2500/README.md

Hi, I’m Thomas Bella 👋😄

Tech Lead Cyber Security based near Vienna, Austria 🇦🇹
I build security foundations that scale (PKI, IAM, hardening, automation), and I ship pragmatic open-source tools in my spare time ⚙️🛡️

🚀 About me

  • 🛡️ Tech Lead Cyber Security (engineering-focused: architecture + implementation)
  • 🔐 Deep into PKI, IAM/SAML/OIDC, Zero Trust-ish pragmatism, and secure automation
  • 🧰 DevOps-minded security: I like repeatable, observable, boring-in-a-good-way systems
  • 🧪 Homelab enjoyer: self-hosting, monitoring, networking, automation
  • 🏃‍♂️ Outside the terminal: hiking, swimming, photography (and quantified-self stuff) 📸⛰️🏊‍♂️

🌐 Portfolio & links

🧩 Featured projects

🟦 uDomainFlag

Browser extension + backend that surfaces useful server/domain/security context — running at scale for years.
Stack: Go backend, high-volume APIs, autoscaling, reliability-first mindset ⚡
Repo: https://github.com/thomas2500/uDomainFlag

🟩 GoAPTCacher

APT caching proxy (think apt-cacher-ng style) focused on performance and fewer external dependencies.
Repo: https://gitlab.com/bella.network/GoAPTCacher

🟨 PassBeyond

SAML SP / reverse-proxy layer with modern session handling (JWT), built for enterprise reality.
Repo: https://gitlab.com/bella.network/PassBeyond

🛡️ What I focus on (security-wise)

  • 🏛️ Security engineering in real orgs: policy → implementation → operations
  • 🧾 Compliance work that actually lands: ISO 27001 / NIS2-aligned execution (not just paperwork)
  • 🔑 Enterprise PKI modernization: roots/intermediates, lifetimes, automation (ACME), inventory hygiene
  • 🧷 Identity & access: SAML/OIDC/OAuth2 patterns, claims, app onboarding, secure auth flows
  • 📈 Observability: logging/metrics first, incident response readiness, and “prove it” telemetry

🧰 Tech stack & tools I like

Languages: Go · PHP · JavaScript · Bash · PowerShell
Infra: Linux · Docker · GitLab CI/CD · nginx · HAProxy · IPv6
Security: PKI · SSO · hardening · threat modeling · secure defaults
Ops: monitoring, alerting, and automation Other: MariaDB · MySQL · PostgreSQL · Redis · MQTT · FontAwesome

📌 Currently tinkering with

  • 🔄 Removing unnecessary dependencies from services (less glue, fewer moving parts)
  • 🧱 Making infrastructure more self-documenting (dashboards, inventories, automation)
  • 📦 Improving caching/proxy workflows for faster, more reliable deployments

🤝 Let’s connect

✨ Fun facts

  • 🧠 I strongly prefer systems that are simple, observable, and boring (that’s a compliment).
  • 📸 If I’m not building something, I’m probably outside taking photos or on a trail.

Pinned Loading

  1. uDomainFlag uDomainFlag Public

    uDomainFlag is a browser extension which shows the country flag of the currently visible website

    JavaScript 31 3

  2. mailcow/mailcow-dockerized mailcow/mailcow-dockerized Public

    mailcow: dockerized - 🐮 + 🐋 = 💕

    JavaScript 12.5k 1.7k

  3. go-fitbit go-fitbit Public

    Fitbit API for Go to fetch, add, update and delete data on Fitbit using REST API

    Go 13 6

  4. golang-helper golang-helper Public

    Docker Helper Image to simplify Go builds and further processing of these builds.

    Dockerfile