Skip to main content
rfxn

New Talk · April 21, 2026

Prompts to Pipelines v1.5: Stop Vibing, Start Engineering

The iterated Claude Code harness talk. Five plagues of agentic development, four primitives (memory, hooks, subagents, settings), and drop-in fixtures that convert a capable model into a disciplined collaborator.

View the TalkAll Talks
Engineering Deck
45 min talk· 40 slides
Five plagues, four primitives, three fixtures
Drop-in CLAUDE.md, settings.json, reviewer subagent
Iterated after six months of production runs
The model is capable; the instructions are the product
claude-codeagenticharnessengineering-practicesrdf
Active Servers (30d)

355.3k

Requests (30d)

32.03M

GitHub

2,136

Deployed across government, defense, education & enterprise networks

govNISTgovNOAAgovNIHgovUNAMdefenseNATO CCDCOEeduStanford UniversityeduHarvard UniversityeduNational Taiwan UniversityeduCity University of New YorkresearchDFNresearchRENATERresearchJANETresearchSURFnetresearchRedIRISresearchGARRresearchUNINETTresearchSWITCHenterpriseAmazon Web ServicesenterpriseMicrosoftenterpriseGoogleenterpriseDeutsche TelekomenterpriseVodafoneenterpriseTelefonicaenterpriseOrangeenterpriseCogententerpriseIONOShostingLiquid WebhostingVultrhostingDigitalOceanhostingHetznerhostingOVHhostingNexcesshostingContabohostingLeasewebhostingBluehostgovNISTgovNOAAgovNIHgovUNAMdefenseNATO CCDCOEeduStanford UniversityeduHarvard UniversityeduNational Taiwan UniversityeduCity University of New YorkresearchDFNresearchRENATERresearchJANETresearchSURFnetresearchRedIRISresearchGARRresearchUNINETTresearchSWITCHenterpriseAmazon Web ServicesenterpriseMicrosoftenterpriseGoogleenterpriseDeutsche TelekomenterpriseVodafoneenterpriseTelefonicaenterpriseOrangeenterpriseCogententerpriseIONOShostingLiquid WebhostingVultrhostingDigitalOceanhostingHetznerhostingOVHhostingNexcesshostingContabohostingLeasewebhostingBluehost
$git clone https://github.com/rfxn/linux-malware-detect.git && cd linux-malware-detect && ./install.sh

Recent GitHub Activity

View all
blacklight11m ago

Activity in blacklight

Delete
blacklight11m ago

Pushed to blacklight: pushed commits

Push
blacklight15m ago

Created branch rewrite in blacklight

Create
beacon8h ago

Pushed to beacon: pushed commits

Push
beacon1d ago

Starred rfxn/beacon

Watch

Featured Projects

View all
LMDv1.6.6.1
1,392

Linux Malware Detect

A high-performance malware scanner for Linux designed for the multi-core era. v2.0.1 introduces a foundational engine leap that delivers up to 10x faster performance than traditional scanners via hash-first short-circuiting and batch-parallel processing.

Learn more
APFv2.0.1
103

Advanced Policy Firewall

An iptables(netfilter) based firewall system for Linux servers. Provides three-fold filtering with static rules, stateful connection tracking, and sanity-based packet inspection.

Learn more
BFDv2.0.1
26

Brute Force Detection

A modular shell script for parsing application logs and detecting authentication failures. Uses regex rules and integrates with APF, Shorewall, or raw iptables for blocking.

Learn more

Quick Start

Get up and running in minutes. All tools install from source with a single command.

LMDLinux Malware Detect
bash
$ git clone https://github.com/rfxn/linux-malware-detect.git && cd linux-malware-detect && ./install.sh
APFAdvanced Policy Firewall
bash
$ git clone https://github.com/rfxn/advanced-policy-firewall.git && cd advanced-policy-firewall && ./install.sh
BFDBrute Force Detection
bash
$ git clone https://github.com/rfxn/brute-force-detection.git && cd brute-force-detection && ./install.sh

Built for Real-World Linux Security

Threat-Driven Design

Built from real malware data collected at the network edge. Every detection signature comes from active threats seen in production hosting environments, not theoretical research.

Shell-Native & Lightweight

Pure bash with minimal dependencies. No agents, no daemons eating resources, no runtime interpreters. Runs on any Linux system from embedded devices to enterprise servers.

Community-Sustained

20+ years of open source development under GPL v2. No venture funding, no enterprise upsells. Sustained by the community of sysadmins who rely on these tools daily.

Protection Stack

Three tools, one defense-in-depth strategy. Layer them together for comprehensive Linux security.

Layer 1

Malware Detection

LMD

Scan & quarantine threats from real hosting threat data

Layer 2

Firewall Policy

APF

Stateful iptables filtering with reactive address blocking

Layer 3

Intrusion Prevention

BFD

Block brute-force auth attacks with modular log parsing

Connect

About

@rfxn

Linux security, open source, and systems engineering

rfxn

Open source projects and contributions

Ryan MacDonald

SVP/CTO at Liquid Web

rfxn

Identity verification and encrypted messaging

Contact

Security reports and project inquiries

Support Open Source Security

R-fx Networks projects are entirely community-funded. If these tools help protect your infrastructure, consider contributing.

Support the ProjectStar on GitHub