πŸš€ SUCCESS STORIES: Dari Open Source ke Karir Sukses

”Kalau Mereka Bisa, Kenapa Kamu Tidak?”

Filosofi: Setiap project open source yang sukses dimulai dari satu orang yang frustasi dengan tools existing dan memutuskan untuk build sendiri. Yang membedakan β€œproject mati” dan β€œproject sukses” adalah konsistensi, komunitas, dan positioning.


πŸ† Tier 1: Legenda β€” Dari Project ke Perusahaan Besar

1. Wazuh β€” Santiago Bassett (Spain β†’ Silicon Valley)

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  WAZUH β€” Open Source SIEM/XDR                               β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                             β”‚
β”‚  FOUNDER: Santiago Bassett                                  β”‚
β”‚  ─────────────────────────────────────────────────────      β”‚
β”‚  β€’ Background: Industrial Engineer (tidak lulus), Spain     β”‚
β”‚  β€’ Kerja: Cybersecurity engineer di perusahaan kecil        β”‚
β”‚  β€’ Pindah: Silicon Valley untuk kerja di AlienVault         β”‚
β”‚  β€’ Pivot: 2015 β€” lihat OSSEC (open source) punya 20K users  β”‚
β”‚  β€’ Action: "Kenapa tidak buat bisnis di sekitar ini?"       β”‚
β”‚                                                             β”‚
β”‚  JOURNEY:                                                   β”‚
β”‚  2015 β€” Start Wazuh sendirian, no funding, no MBA           β”‚
β”‚  2016 β€” First enterprise customer (Fortune 500 company)     β”‚
β”‚  2018 β€” 20,000 users, mulai hire team                       β”‚
β”‚  2020 β€” Launch Wazuh Cloud (SaaS)                           β”‚
β”‚  2023 β€” 100,000+ users, 700+ paying customers               β”‚
β”‚         Customers: Salesforce, NASA, Walgreens, PWC         β”‚
β”‚         Revenue: Cashflow positive, 40% YoY growth          β”‚
β”‚         Team: ~200 employees, mostly Argentina              β”‚
β”‚         Goal: IPO dalam 5-7 tahun (tanpa VC funding!)       β”‚
β”‚                                                             β”‚
β”‚  BUSINESS MODEL:                                            β”‚
β”‚  β€’ Software: 100% FREE (GPL v2)                             β”‚
β”‚  β€’ Revenue: Professional services + Cloud hosting (SaaS)    β”‚
β”‚  β€’ Split: 50% SaaS, 50% services                            β”‚
β”‚                                                             β”‚
β”‚  KEY INSIGHT:                                               β”‚
β”‚  "Our goal to make this free to anyone... I feel like I am  β”‚
β”‚   betraying my users by charging them for a feature."       β”‚
β”‚  β€” Santiago Bassett                                         β”‚
β”‚                                                             β”‚
β”‚  LESSON: Build trust dengan community dulu, monetize later. β”‚
β”‚          Jangan pernah charge untuk core software.          β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

Relevansi untuk Anda:

  • Santiago bukan CS degree β€” Industrial Engineer yang tidak lulus
  • Tidak punya funding β€” bootstrap dari nol
  • Tidak punya experience bisnis β€” belajar on the job
  • Tapi: Punya domain expertise (cybersecurity), lihat opportunity, dan execute

2. Falco β€” Loris Degioanni (Italy β†’ Sysdig CTO)

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  FALCO β€” eBPF Runtime Security (CNCF Graduate)               β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                              β”‚
β”‚  FOUNDER: Loris Degioanni                                    β”‚
β”‚  ────────────────────────────────────────────────────────────│
β”‚  β€’ Background: Italian engineer                              β”‚
β”‚  β€’ Previous: CREATOR OF WIRESHARK (1998!)                    β”‚
β”‚  β€’ 2016: Create Falco di Sysdig                              β”‚
β”‚  β€’ 2018: Donate ke CNCF (Cloud Native Computing Foundation)  β”‚
β”‚  β€’ 2024: CNCF Graduate β€” same level as Kubernetes, Prometheusβ”‚
β”‚                                                              β”‚
β”‚  JOURNEY:                                                    β”‚
β”‚  1998 β€” Create Wireshark (network protocol analyzer)         β”‚
β”‚         β†’ Most popular network tool in the world             β”‚
β”‚         β†’ Di-acquire oleh Riverbed, tapi tetap open source   β”‚
β”‚                                                              β”‚
β”‚  2013 β€” Found Sysdig (container visibility)                  β”‚
β”‚         β†’ Pivot ke cloud native security                     β”‚
β”‚                                                              β”‚
β”‚  2016 β€” Create Falco (runtime security with eBPF)            β”‚
β”‚         β†’ "Insane to think about using eBPF for security"    β”‚
β”‚         β†’ Submit patches ke Linux kernel untuk enable eBPF   β”‚
β”‚         β†’ Open source dari hari pertama                      β”‚
β”‚                                                              β”‚
β”‚  2018 β€” CNCF Sandbox β†’ Incubator β†’ Graduate (2024)           β”‚
β”‚         β†’ 30+ public adopters: Cisco, Shopify, GitLab        β”‚
β”‚         β†’ 400% increase in contributors since incubation     β”‚
β”‚         β†’ 526% increase in downloads                         β”‚
β”‚                                                              β”‚
β”‚  2024 β€” Sysdig unicorn (valued >$1B)                         β”‚
β”‚         β†’ Falco = core differentiator                        β”‚
β”‚                                                              β”‚
β”‚  KEY INSIGHT:                                                β”‚
β”‚  "The fact that Falco graduated is a testament to how CNCF   β”‚
β”‚   is becoming an important repository of projects that are   β”‚
β”‚   more or less what the community agrees them to be as the   β”‚
β”‚   default step."                                             β”‚
β”‚  β€” Loris Degioanni                                           β”‚
β”‚                                                              β”‚
β”‚  LESSON: Open source + CNCF = credibility + adoption.        β”‚
β”‚          eBPF = future of security (Anda di jalur yang benar)β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

Relevansi untuk Anda:

  • Loris create 2 tools legendaris: Wireshark + Falco
  • Pattern: β€œBuild tool yang saya sendiri butuhkan”
  • eBPF = teknologi yang sama dengan Aegis (Anda di jalur yang benar!)
  • CNCF graduation = validasi industri tertinggi

3. Leonardo Di Donato β€” Dari Open Source ke Sysdig

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  LEONARDO DI DONATO β€” kubectl trace β†’ Sysdig β†’ Falco           β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                                β”‚
β”‚  BACKGROUND:                                                   β”‚
β”‚  β€’ Kerja di startup (Kubernetes 1.3 era) β€” startup gagal       β”‚
β”‚  β€’ Move ke InfluxData β€” kerja dengan eBPF daily                β”‚
β”‚  β€’ Open source: kubectl trace (eBPF tracing untuk K8s)         β”‚
β”‚                                                                β”‚
β”‚  HOW HE GOT HIRED BY SYSDIG:                                   β”‚
β”‚  1. Build kubectl trace (open source, GitHub)                  β”‚
β”‚  2. Sysdig lihat project-nya ("cool things with eBPF")         β”‚
β”‚  3. Sysdig reach out β€” mau hire untuk commercial product       β”‚
β”‚  4. Leonardo: "Saya cuma mau kerja open source"                β”‚
β”‚  5. Sysdig: "OK, kami punya open source project (Falco)"       β”‚
β”‚  6. Hired sebagai core maintainer Falco + creator kubectl traceβ”‚
β”‚                                                                β”‚
β”‚  KEY QUOTE:                                                    β”‚
β”‚  "I was in love with eBPF. And I've always been in love        β”‚
β”‚   with open-source. I just want to do open-source and do       β”‚
β”‚   cutting-edge things with eBPF."                              β”‚
β”‚  β€” Leonardo Di Donato                                          β”‚
β”‚                                                                β”‚
β”‚  LESSON: Build project yang Anda passionate, publish ke        β”‚
β”‚          GitHub, company akan datang ke Anda (bukan Anda       β”‚
β”‚          apply ke company).                                    β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

Relevansi untuk Anda:

  • Leonardo = contoh paling mirip dengan posisi Anda sekarang
  • Build tool di waktu luang β†’ di-notice oleh company besar β†’ hired
  • Tidak apply kerja β€” company yang reach out ke dia!

πŸ₯ˆ Tier 2: Sukses Besar β€” Dari Project ke Company/Karir

4. Daniel Brandao β€” Dari Homelab ke T-Mobile

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  DANIEL BRANDAO β€” NetWiz β†’ T-Mobile Engineer                β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                               β”‚
β”‚  PROJECT: NetWiz                                             β”‚
β”‚  ─────────────────────────────────────────────────────       β”‚
β”‚  β€’ Built di Meta hackathon (2 hari)                          β”‚
β”‚  β€’ Tools: Home lab ThinkCenters + Proxmox                    β”‚
β”‚  β€’ Function: Network change detection + auto-rollback      β”‚
β”‚                                                               β”‚
β”‚  PORTFOLIO:                                                  β”‚
β”‚  β€’ GitHub: Living showcase (bukan sekadar class assignments)β”‚
β”‚  β€’ CI/CD: Build pipeline sendiri untuk personal website      β”‚
β”‚  β€’ Homelab: Infrastructure as code                           β”‚
β”‚                                                               β”‚
β”‚  INTERVIEW T-MOBILE:                                         β”‚
β”‚  β€’ Tidak cuma sebut coursework                               β”‚
β”‚  β€’ Walk through GitHub portfolio secara intentional          β”‚
β”‚  β€’ Highlight: NetWiz, CI/CD pipeline, homelab                β”‚
β”‚  β€’ Result: HIRED                                             β”‚
β”‚                                                               β”‚
β”‚  KEY QUOTE:                                                   β”‚
β”‚  "Post anything that shows your skills in cybersecurity.     β”‚
β”‚   It could be code, it could be documentation."              β”‚
β”‚  β€” Daniel Brandao                                            β”‚
β”‚                                                               β”‚
β”‚  LESSON: Portfolio > Resume. Homelab > GPA.                β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

5. Suricata β€” Victor Julien & OISF

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  SURICATA β€” Open Source IDS/IPS                             β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                               β”‚
β”‚  FOUNDERS: Victor Julien, Matt Jonkman, Will Metcalf         β”‚
β”‚  ─────────────────────────────────────────────────────       β”‚
β”‚  β€’ 2007: Victor experiment dengan code sendiri               β”‚
β”‚  β€’ 2008: Meet di conference US, share prototype              β”‚
β”‚  β€’ Funding: DHS (Department of Homeland Security) seed      β”‚
β”‚  β€’ Organization: OISF (Open Information Security Foundation) β”‚
β”‚  β€’ License: GPLv2 (anti-corporate acquisition)               β”‚
β”‚                                                               β”‚
β”‚  GROWTH:                                                     β”‚
β”‚  β€’ 15+ years journey                                          β”‚
β”‚  β€’ Adopted by: AWS (network firewall), enterprise worldwide  β”‚
β”‚  β€’ Model: Vendor membership (sustainable funding)            β”‚
β”‚  β€’ Community: Core team + contributors global                β”‚
β”‚                                                               β”‚
β”‚  KEY INSIGHT:                                                 β”‚
β”‚  "We wanted to establish an organization that would make    β”‚
β”‚   Suricata safe from acquisition, which we'd seen happen to  β”‚
β”‚   other open-source projects."                               β”‚
β”‚  β€” Victor Julien                                             β”‚
β”‚                                                               β”‚
β”‚  LESSON: Foundation/organization = longevity.               β”‚
β”‚          GPLv2 = protection dari corporate takeover.         β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

πŸ₯‰ Tier 3: Realistis untuk Anda β€” Path Mahasiswa

6. Path A: β€œAegis β†’ Junior Security Engineer”

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  SCENARIO A: Aegis v1.0 β†’ Kerja di Startup/Scale-up       β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                               β”‚
β”‚  TIMELINE:                                                   β”‚
β”‚  Semester 6 (Now) β€” Start Aegis v1.0                         β”‚
β”‚  β”œβ”€β”€ Build eBPF firewall + WAF                              β”‚
β”‚  β”œβ”€β”€ Publish ke GitHub (open source)                         β”‚
β”‚  β”œβ”€β”€ Tulis blog: "Building eBPF Security from Scratch"       β”‚
β”‚  └── Share di Reddit r/homelab, r/netsec, Hacker News      β”‚
β”‚                                                               β”‚
β”‚  Semester 7 β€” Aegis v1.0 Release                             β”‚
β”‚  β”œβ”€β”€ 100+ GitHub stars                                      β”‚
β”‚  β”œβ”€β”€ 10+ users (homelab community)                           β”‚
β”‚  β”œβ”€β”€ Fix bugs, iterate berdasarkan feedback                β”‚
β”‚  └── Sertifikasi: CompTIA Security+                         β”‚
β”‚                                                               β”‚
β”‚  Semester 8 β€” Portfolio Polish                               β”‚
β”‚  β”œβ”€β”€ Aegis v1.1 (FIM, container security)                   β”‚
β”‚  β”œβ”€β”€ Blog series: 5-10 technical articles                    β”‚
β”‚  β”œβ”€β”€ Speaking: Local meetup / campus event                 β”‚
β”‚  └── LinkedIn: Share journey, build following               β”‚
β”‚                                                               β”‚
β”‚  Apply Kerja:                                                β”‚
β”‚  β”œβ”€β”€ Target: Junior Security Engineer / SOC Analyst        β”‚
β”‚  β”œβ”€β”€ Company: Startup cybersecurity / tech scale-up          β”‚
β”‚  β”œβ”€β”€ Salary: $40K-60K (Indonesia: Rp 8-15 juta)            β”‚
β”‚  └── Differentiator:                                        β”‚
β”‚      "Saya build security platform sendiri, ini GitHub-nya"  β”‚
β”‚      (bukan: "Saya lulusan IT dengan IPK 3.5")             β”‚
β”‚                                                               β”‚
β”‚  Year 1-2 Kerja:                                             β”‚
β”‚  β”œβ”€β”€ Kontribusi ke Aegis sambil kerja (weekend)             β”‚
β”‚  β”œβ”€β”€ Belajar dari senior di company                          β”‚
β”‚  β”œβ”€β”€ Aegis v1.3 (AI detection)                             β”‚
β”‚  └── Pivot: Senior Security Engineer / Detection Engineer   β”‚
β”‚                                                               β”‚
β”‚  Year 3-5:                                                   β”‚
β”‚  β”œβ”€β”€ Aegis v2.0 (multi-agent, enterprise)                    β”‚
β”‚  β”œβ”€β”€ Pilihan A: Stay di company, naik ke Staff/Principal     β”‚
β”‚  β”œβ”€β”€ Pilihan B: Join company besar (CrowdStrike, etc)       β”‚
β”‚  └── Pilihan C: Startup sendiri (Wazuh-style)               β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

7. Path B: β€œAegis β†’ Hired oleh Company Besar”

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  SCENARIO B: Aegis β†’ Di-notice oleh Company β†’ Hired         β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                               β”‚
β”‚  INSPIRASI: Leonardo Di Donato (kubectl trace β†’ Sysdig)     β”‚
β”‚                                                               β”‚
β”‚  TIMELINE:                                                   β”‚
β”‚  Semester 6-7 β€” Build Aegis, publish blog                    β”‚
β”‚  β”œβ”€β”€ "How I built eBPF firewall in Rust" β†’ Hacker News front β”‚
β”‚  β”œβ”€β”€ "WAF dengan 10K req/sec di single core" β†’ trending    β”‚
β”‚  β”œβ”€β”€ "Purple Team module untuk homelab" β†’ r/netsec hot      β”‚
β”‚  └── GitHub: 500+ stars, 50+ forks                          β”‚
β”‚                                                               β”‚
β”‚  Semester 8 β€” Di-notice:                                    β”‚
β”‚  β”œβ”€β”€ Email dari recruiter: "Saw your project, interested?" β”‚
β”‚  β”œβ”€β”€ DM di Twitter/LinkedIn dari engineer company            β”‚
β”‚  β”œβ”€β”€ Invitation: "Want to chat about your eBPF work?"       β”‚
β”‚  └── Options:                                                β”‚
β”‚      β€’ CrowdStrike (Falcon team)                             β”‚
β”‚      β€’ Sysdig (Falco team)                                   β”‚
β”‚      β€’ Isovalent (Cilium/eBPF)                               β”‚
β”‚      β€’ Red Hat (kernel team)                                 β”‚
β”‚      β€’ Startup eBPF-focused (new)                            β”‚
β”‚                                                               β”‚
β”‚  Interview:                                                  β”‚
β”‚  β€’ Tidak: "Tell me about your coursework"                    β”‚
β”‚  β€’ Ya: "Walk me through Aegis architecture"                 β”‚
β”‚  β€’ Coding: "How would you extend this to Windows?"          β”‚
β”‚  β€’ Result: HIRED sebagai eBPF Security Engineer             β”‚
β”‚                                                               β”‚
β”‚  Salary: $80K-120K (US) / Rp 20-40 juta (Indonesia remote)  β”‚
β”‚                                                               β”‚
β”‚  REALITY CHECK:                                              β”‚
β”‚  β€’ Butuh: Project yang genuinely useful + technical depth   β”‚
β”‚  β€’ Butuh: Consistent blogging + community engagement         β”‚
β”‚  β€’ Butuh: 6-12 bulan dedicated work                         β”‚
β”‚  β€’ Tidak instant β€” tapi possible!                           β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

8. Path C: β€œAegis β†’ Startup Sendiri”

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚  SCENARIO C: Aegis β†’ Wazuh-style Bootstrapped Company       β”‚
β”œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€
β”‚                                                               β”‚
β”‚  INSPIRASI: Santiago Bassett (Wazuh β€” no VC, IPO goal)      β”‚
β”‚                                                               β”‚
β”‚  TIMELINE:                                                   β”‚
β”‚  Year 0-1 (Now + 12 bulan) β€” Build + Community              β”‚
β”‚  β”œβ”€β”€ Aegis v1.0-1.2 (network + endpoint + container)       β”‚
β”‚  β”œβ”€β”€ 1000+ GitHub stars                                     β”‚
β”‚  β”œβ”€β”€ 100+ active users (homelab + small business)          β”‚
β”‚  β”œβ”€β”€ Blog + YouTube channel ("Building Security Tools")    β”‚
β”‚  └── Community: Discord/Slack dengan 500+ members            β”‚
β”‚                                                               β”‚
β”‚  Year 1-2 β€” Monetization:                                    β”‚
β”‚  β”œβ”€β”€ Aegis Cloud (SaaS): Managed hosting untuk SMB         β”‚
β”‚  β”œβ”€β”€ Professional Services: Setup + tuning untuk enterprise  β”‚
β”‚  β”œβ”€β”€ Support Subscription: Priority support + consulting   β”‚
β”‚  └── Team: 2-3 people (co-founder + engineer)              β”‚
β”‚                                                               β”‚
β”‚  Year 2-3 β€” Scale:                                           β”‚
β”‚  β”œβ”€β”€ 50+ paying customers                                   β”‚
β”‚  β”œβ”€β”€ $100K+ ARR (Annual Recurring Revenue)                  β”‚
β”‚  β”œβ”€β”€ Team: 10-15 people                                     β”‚
β”‚  └── Funding: Bootstrapped (tidak VC) atau angel round      β”‚
β”‚                                                               β”‚
β”‚  Year 3-5 β€” Enterprise:                                      β”‚
β”‚  β”œβ”€β”€ 500+ customers                                         β”‚
β”‚  β”œβ”€β”€ $1M+ ARR                                               β”‚
β”‚  β”œβ”€β”€ Team: 50+ people                                       β”‚
β”‚  └── Goal: Series A atau profitable bootstrapped            β”‚
β”‚                                                               β”‚
β”‚  REALITY CHECK:                                              β”‚
β”‚  β€’ 90% open source projects tidak jadi bisnis               β”‚
β”‚  β€’ Butuh: Business sense + technical + persistence           β”‚
β”‚  β€’ Butuh: Network (know people who need your tool)         β”‚
β”‚  β€’ Butuh: 3-5 tahun dedicated work                          β”‚
β”‚  β€’ Reward: Independence + impact + potential wealth         β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

πŸ“Š Perbandingan Path

AspekPath A (Employee)Path B (Hired by Big Co)Path C (Startup)
Timeline6-12 bulan12-18 bulan3-5 tahun
RiskLowMediumHigh
RewardStable incomeHigh salary + prestigeUncapped
ControlLow (boss decides)Medium (team decides)High (you decide)
Skill neededTechnicalTechnical + visibilityTechnical + business
Aegis rolePortfolioMagnetProduct
Probability70%20%10%
Best forStabilityRecognitionIndependence

🎯 Action Plan: Dari Sekarang

Minggu Ini (Week 1)

#ActionOutput
1Buat GitHub repo: aegis-securityRepository publik
2Tulis README dengan vision500+ words
3Design logo (simple)assets/logo.png
4Setup project structureCargo + Go + React
5Tulis blog post #1”Why I’m building Aegis”

Bulan Ini (Month 1)

#ActionOutput
1eBPF Hello World (TC mode)Working code
2WAF skeleton (Axum)Reverse proxy works
3Manager API (Gin)Basic endpoints
4Dashboard shell (React)Navigation works
5Blog post #2”eBPF for Security: A Beginner’s Guide”
6Share di Reddit/HN100+ views

Semester Ini (3 bulan)

#ActionOutput
1Aegis v1.0 MVPWorking product
25+ blog postsContent library
3100+ GitHub starsSocial proof
410+ users (homelab)Validation
5Sertifikasi Security+Credential

πŸ’‘ Golden Rules dari Success Stories

RuleContohAplikasi untuk Anda
Build what you needWireshark (Loris butuh network analyzer)Aegis (Anda butuh homelab defense)
Open source dari hari 1Falco, WazuhPublish ke GitHub sejak scaffold
Blog about journeyDaniel Brandao1 post/minggu minimum
Community firstWazuh 100K users gratisDiscord/Slack untuk users
Don’t charge for coreWazuh GPL v2MIT/Apache license
Monetize servicesWazuh SaaS + supportAegis Cloud (v2.0)
Persistence > PerfectionSuricata 15+ yearsConsistent 6-12 bulan
Hire slow, fire fastWazuh Argentina teamSolo dulu, hire saat revenue

πŸš€ Final Motivation

Santiago Bassett: "I started by myself with no funding."
Loris Degioanni: "It was sort of insane to think about using eBPF."
Leonardo Di Donato: "I just want to do open-source and cutting-edge things."
Victor Julien: "We wanted to make Suricata safe from acquisition."

BEDANYA: Mereka execute. Anda juga bisa execute.

Document Version: 1.0
Last Updated: 2026-06-17
Purpose: Motivation + roadmap dari success stories open source cybersecurity