Prakae
India's sovereign cybersecurity platform.
Prakae is our integrated, India-sovereign cybersecurity platform — combining third-party risk, OT/ICS monitoring, offensive validation, and GRC under one Claude-powered console. Built for regulated enterprises that need real visibility, real evidence, and real accountability.
One platform. 4 modules.
One platform replaces 3–5 vendors and a stack of spreadsheets. Continuous third-party rating, native OT protocol decoding, breach-and-attack simulation, and continuous compliance evidence — all hosted in Mumbai-region sovereign cloud, all priced in INR, all backed by a 30-day self-serve pilot.
Built for the full stack.
Each module is a complete capability on its own — and gets stronger when run together. Buy what you need; expand when you're ready.
TPRM
Third-Party Risk
Continuous public-observation rating for every vendor — TLS, DNS, headers, exposed services, breach exposure, and dark-web monitoring — plus CAIQ/SIG questionnaire automation and 4th-party concentration analysis under DORA Article 28.
- Continuous vendor rating (daily re-score)
- Dark-web monitoring (HIBP + paste sites + criminal forums)
- 4th-party concentration analysis (DORA Art. 28)
- CAIQ, SIG Lite, and custom questionnaire automation
- Per-vendor risk reports + portfolio rollup
- Vendor self-service portal with magic-link invites
OT/ICS
OT Monitoring
Passive plant-floor monitoring across 14 industrial protocols with PLC integrity baselining and MITRE ATT&CK for ICS coverage. Deploy as a Prakae sensor appliance — DIN-rail, fanless, 1U — or as a VM/container. Same software, same UI.
- 14 native industrial protocol decoders
- PLC firmware integrity baselines with 4-eyes change control
- ATT&CK for ICS — 76 techniques, 43% covered out of the box
- Threat-hunting DSL with saved and scheduled hunts
- Forensic timeline — six-source chronological replay per asset
- Native Modbus / S7 / EtherNet/IP honeypots and decoys
Offensive
Breach & Attack Simulation
Validate every layer of your defense — 860+ BAS scenarios generated from 86 ATT&CK techniques × 10 evasion variants, phishing campaigns with just-in-time training, email and web security scanning, and a closed-loop remediation tracker.
- 860+ BAS scenarios (86 ATT&CK techniques × 10 variants)
- Phishing campaigns with multi-SMTP relay pool
- Email security: header forensics + sandbox detonation
- Web security scanner (CSP, HSTS, CORS, SQLi, XSS, traversal)
- 10 awareness training courses with certifications
- Findings → tracked remediation tickets, closed-loop validation
GRC
Governance, Risk & Compliance
12 frameworks seeded, exception workflows with approval chains, auto-evidence collection that queries your systems instead of asking your team, and tamper-evident hash-chained WORM exports your auditors will actually approve.
- Risk register — inherent + residual scoring, treatment plans
- 12 frameworks seeded: SOC 2, ISO 27001, PCI-DSS 4.0, NIST CSF 2.0
- Plus HIPAA, IEC 62443, NERC CIP, NIS2, DORA, DPDP, CIS, ATT&CK
- Time-bound exception workflow with approval chains
- Auto-evidence: MFA, audit volume, encryption, patch SLA
- Hash-chained WORM export for auditors
What makes it different.
6 things that don't show up in a feature matrix but matter on day 30, day 90, and day 365.
Sovereign by design
Mumbai-region cloud, India-resident team, INR billing — built for organizations that can't send OT telemetry to US or EU clouds.
Claude-powered AI co-analyst
Incident reports, kill-chain narration, Time Machine replay, and AI-graded tabletop drills — built on Anthropic's Claude, not a rule engine.
INR pricing, no FX exposure
Phase-1 envelope around ₹1.1 Cr for a typical 2-substation deployment, vs ₹3.5–4 Cr from US incumbents. SMB tier starts at ₹75K/month.
30-day self-serve pilot
Unique in the OT space. Spin up a tenant, connect your environment, and run real workloads for 30 days before any annual commitment.
Hindi and regional language UI
Plant operators don't always think in English. The console, alerts, and incident reports speak the language your team works in.
Founder-accessible
The CTO is on every customer call. Pre-seed company, post-seed engineering — your account is not a number in a queue.
Indian-built sensor appliances.
Three SKUs cover plant floor to data-center. Plug into a SPAN or TAP, register the appliance, and assets auto-discover in minutes. Same software runs as a VM/container if you prefer.
DIN-rail, fanless — for plant floor and control rooms
1U rack — for substation control buildings and DCS rooms
High-throughput core appliance — for data-center and IT/OT DMZ
14 industrial decoders.
Frameworks seeded.
Connects to your stack.
Bidirectional integrations with the SIEMs, ITSM platforms, identity providers, and EDRs your team already runs.