Why HexShield?
The unified command platform for large-scale cyber defence exercises, training programs, and scenario-based team preparation.
International cyber defence exercises — like those conducted by NATO and affiliated organizations — suffer from critical operational problems: tasks cannot be tracked in real time, situational awareness collapses under large participant counts, documents are scattered across personal laptops, and teams resort to dozens of different communication tools — GitHub, WhatsApp, Microsoft Teams — creating coordination chaos and missed messages. Preparations made before the exercise are lost when personnel are unavailable on the day. HexShield eliminates these problems by providing a single, unified command platform where hundreds of participants across multiple teams prepare, communicate, coordinate, and respond in real time — from pre-exercise preparation through post-exercise review.
What Sets Us Apart
Zero External Dependencies
Every service — email, chat, storage, authentication, wiki, code hosting, AI — runs on your infrastructure. No cloud subscriptions, no SaaS APIs, no data leaving your network. Deploy on an air-gapped network if needed.
One Login, Full Access
Keycloak-powered SSO means participants authenticate once and get seamless access to the platform, wiki, and code hosting. No password fatigue, no separate accounts, no friction.
Built-In Security Controls
JWT authentication, CSRF protection, UUID-based identifiers, bcrypt password hashing, role-based access control, security headers, and network isolation. Every layer follows security best practices because your platform shouldn't be the weakest link in your exercise.
Deploy Anywhere, Scale Easily
Thirteen services, one docker compose up command. Deploy on a laptop for small teams or on dedicated servers for multinational exercises. The same configuration works on Linux with optional GPU acceleration for AI workloads.
Technical Highlights
| Capability | Description |
|---|---|
| 13 Integrated Services | Email, Chat, Tasks, MISP, Files, Calendar, Reports, Screenshots, Wiki, Git, AI Workflows, SSO, Object Storage |
| Real-Time Architecture | WebSocket-powered instant messaging, notifications, and presence detection |
| S3-Compatible Storage | All files, attachments, and screenshots stored in self-hosted MinIO object storage |
| Identity Management | Keycloak-powered SSO with OIDC, supporting all integrated services |
| Automated Monitoring | Headless browser engine captures application screenshots at configurable intervals |
| AI-Ready | Built-in LangFlow with local LLM support via Ollama for visual AI pipeline building, RAG document processing, and automated analysis — no external APIs required |
| IDOR-Resistant | All external-facing identifiers use UUIDs — no enumerable integer IDs |
Ready to Command Your Next Exercise?
Deploy HexShield in minutes and manage your entire exercise team from a single platform. No cloud subscriptions, no vendor lock-in, no data leaving your network.
Schedule a Demo