Core Capability · Risk Assessment

Complexity
Invites the Attack.

We analyze every structural layer and trust relationship across your air, land, maritime, and orbital systems — enumerating every feasible exploitation path with deterministic, fully reproducible precision.

No probabilistic guesses. No hidden assumptions. We neutralize it.

Methodology

How We Work

Three deterministic phases — from system decomposition to a complete, actionable threat picture.

01

System Decomposition & Asset Mapping

We map every subsystem, interface, and trust boundary across your platform — building a precise picture of how your assets connect, communicate, and depend on each other.

Full Asset Inventory — Every component catalogued — from sensors and actuators to communication links, control interfaces, and embedded systems — across all operational layers.
Interface & Trust Mapping — Every data flow, physical connection, and control path is traced and classified by crossing type: physical, logical, or wireless — and by the assurance level it requires.
Criticality Scoring — Each asset is weighted by operational impact and exposure: safety-critical, mission-essential, or administrative. This score drives prioritization throughout the assessment.
02

Threat Vector Synthesis & Attack Path Enumeration

Domain-specific threat scenarios are projected onto the asset map. Every feasible exploitation path — including multi-hop lateral movements across domain boundaries — is enumerated and ranked.

Airborne
  • RF jamming & signal spoofing
  • Avionics bus injection
  • Supply-chain firmware compromise
  • Maintenance port exploitation
Ground Tactical
  • Intra-vehicle network spoofing
  • Dismounted radio interception
  • Battlefield network eavesdropping
  • Command & control injection
Maritime & Orbital
  • GNSS jamming & meaconing
  • Serial bus manipulation
  • Orbital link interception
  • Cross-domain bridge exploitation
Lateral Movement Analysis — All multi-hop paths crossing security domains are traced, choke points are flagged, and assets acting as unintended pivots between classified and unclassified zones are identified.
03

Risk Quantification & Prioritized Remediation

Every identified attack path is scored across multiple dimensions. The output is an actionable risk register — threats ranked by exploitability, impact, and the countermeasures required to close each gap.

Exploitability Scoring — Each path is assessed by attacker capability required, environmental conditions, and likelihood of detection — producing a clear, comparable feasibility score per threat.
Impact Assessment — Impact is quantified per asset: safety consequences, mission degradation, and information integrity — scored and propagated through the full asset hierarchy.
Assurance Allocation — Security assurance levels are automatically proposed per identified threat, giving your engineering team a pre-validated starting point for formal security planning.

Workspace Preview

Analysis Workspace

pra.workspace — Security Topology Graph

# Security Topology Graph — Platform Assessment v2.1

nodes=47 edges=129 trust_boundaries=8 criticality_max=5

DOMAIN [AIRBORNE] Mission Computer → FCC → FADEC → Engine Sensors

DOMAIN [AIRBORNE] Avionics Bus → IRS → GPS Receiver → Nav DB

BOUNDARY [CROSSING] Maintenance Port ⇢ Core Avionics (HIGH RISK)

DOMAIN [GROUND] BMS Server → Radio Gateway → Vetronics CAN Bus

DOMAIN [GROUND] C2 Terminal → Data Link → Remote Weapon Station

BOUNDARY [PIVOT] BMS Server ⇢ Avionics Link (CRITICAL — UNINTENDED)

DOMAIN [ORBITAL] Ground Station → Up/Down Link → Satellite Bus

PATH [ATTACK] RF Spoof → GPS RX → IRS → MC → FCC [feasibility: 0.71]

PATH [ATTACK] Maint. Port → Bus Inject → Nav DB [feasibility: 0.54]

Critical path High severity Mitigated Trust boundary
Get Started

Understand Your
True Attack Surface

Every unassessed interface is an assumption. Let us map every feasible exploitation path before an adversary does.

Request Assessment View All Capabilities