Plainsight

Getting PlainSight Off the Ground

This is my capstone project for Unitec, built in partnership with Netbridge. The idea is simple: instead of logging into three different vendor portals to check what is happening on the network, everything feeds into one dashboard that uses a local AI model to explain what it all means in plain English.

What it actually is

PlainSight is three things working together. A Wazuh SIEM backend sitting on Ubuntu via VMware ESXi that ingests syslog from the FortiGate 60E, the Ruckus R650 WAP, and the FS-148F switch. A Streamlit dashboard that talks to Wazuh via its REST API and surfaces everything in one view. And a local phi3:mini model running through Ollama that reads the alerts and writes a plain English summary with MITRE ATT&CK tags attached.