Active Kinetic Defense: The Synzcuor Ecosystem

An inline hardware appliance that sits physically between the network and critical equipment (like power grids, medical devices, or assembly line PLCs).

Built on custom carrier boards housing System-on-Modules with dual Gigabit Ethernet ports. Inside is a physical Normally Closed (NC) Solid-State Relay wired directly to a CPU GPIO pin. If a threat is detected, the software pulls the GPIO pin high, physically snapping the relay open and cutting the copper Ethernet connection in under 50 microseconds to air-gap the system.

A lightweight, software-only Content Disarm and Reconstruction (CDR) agent for laptops and home offices.

Automatically intercepts file downloads locally. If a file is flagged as suspicious, Prism strips active threats—such as macros in Office documents (vbaProject.bin) or Javascript triggers in PDFs (/Launch, /JS)—and reconstructs a clean, threat-free copy in-place. All processing is 100% local, preserving absolute data privacy.

The core local background service and orchestrator governing both appliances and software endpoints.

Acts as the background daemon that controls Synz Intercept appliances and Synz Prism software agents. It securely loads the encrypted ONNX model (.onnx.enc) in memory, parses incoming raw packets, decrypts session tokens, and manages real-time telemetry flows to the control plane.

The air-gapped management console and central registry for enterprise security teams.

Built in ASP.NET Core (API and Portal), Synz Core runs as a localized or air-gapped server. It aggregates fleet telemetry logs, routes event metrics to Splunk/SIEM systems, logs NERC CIP / IEC 62443 compliance indices, and manages the training 'Foundry' where QGAN neural models are compressed.