Deploy in Three Steps
HexShield runs entirely on Docker. No cloud accounts, no external APIs, no data leaving your network. Deploy a complete exercise management platform — from zero to fully operational — in minutes.
Deployment Steps
Configure Your Environment
Copy the environment template, set your network IP or domain, and configure credentials. One .env file controls everything — database passwords, JWT secrets, Keycloak settings, and storage configuration. Change the IP once, and every service updates automatically.
cp .env.example .env
nano .env
# Set APP_IP, APP_HOST, passwords...
Build & Launch
A single Docker Compose command builds all 13 services, creates the network, initializes databases, imports Keycloak realms, and starts the platform. Everything runs behind a single Nginx reverse proxy on port 80. No complex orchestration needed.
docker compose up -d --build
Prepare & Execute
Create user accounts, configure teams, define systems and DMZ zones, and set up exercise scenarios. Teams begin preparation — building checklists, documenting playbooks in the wiki, and reviewing procedures. When the exercise starts, hundreds of participants log in through a single portal and coordinate via email, chat, tasks, threat logging, code hosting, and AI tools — all with one set of credentials via Single Sign-On.
Platform ready — start your exercise
Total deployment time depends on your hardware and internet speed for pulling Docker images. Typical: 5–15 minutes from start to first login.
Ready to Command Your Next Exercise?
Deploy HexShield in minutes and manage your entire exercise team from a single platform. No cloud subscriptions, no vendor lock-in, no data leaving your network.
Schedule a Demo