CLOSED PRIVATE BETA · INVITE-GATED · SELF-HOSTED
External attack-surface & digital-footprint intelligence

The private beta is opening.
Request your seat.

h0SINT maps your external attack surface, reasons over it like a senior analyst, and turns raw OSINT into defensible, audience-ready intelligence. We're onboarding a small cohort of due-diligence, cyber-insurance, VC/PE and MSSP teams. Self-hosted: your data never leaves your perimeter.

Invite-only · limited cohort Zero data egress · runs on your hardware Direct line to the build team
h0sint@beta: ~/onboarding LIVE
// 01 — what you get in the beta

The full platform, in your perimeter.

Beta testers get the complete h0SINT workflow running on their own infrastructure — the same engine used to produce board-ready security due-diligence, mapped straight onto your real engagements.

oneclick.report● ready
[ flagship ]

1-Click due-diligence report

An autonomous loop — analyze → verify → QA-score → learn & retry — turns a target into a board-ready Technical Due-Diligence report with live progress and portfolio avatars. Profiles from paranoid to permissive, plus a custom sliders mode.

brain.store● ready
[ memory ]

Per-target brain

Every target accumulates fact-checked memory — facts, false-positive catalog, entities and evidence — read by analysis, chat, agents and dreaming. Portable export included.

agent.swarm● ready
[ autonomous ]

Agentic investigation

Scope-checked, approval-gated agents investigate findings, recon hosts, enrich OSINT and verify vulnerabilities — with a full audit trail and a live 3D Agent Universe.

qa.gate● armed
[ ≥90 / 100 ]

Self-correcting QA gate

A 6-axis judge grades every report — accuracy, fact-checking, gap-vs-brain, truthfulness, visuals, audience value — and auto-corrects until it's defensible. "Too green is worrying too."

dream.engine● online
[ overnight ]

Dreaming Mode

A local model contemplates your whole portfolio overnight, building a cross-domain knowledge graph and feeding quality-checked facts back into each brain.

workspace.io● online
[ google ]

Agentic Workspace & export

Ask in plain language — "make a report in Google Slides and send me the link" — and an agent builds it in your own Workspace. Export to PDF / HTML / Markdown / JSON, every outbound action approval-gated.

dream://cosmos — portfolio
Dreaming Mode 3D knowledge cosmos
target://overview — risk by severity
Target attack-surface dashboard
// 02 — the road to beta

Where the beta stands today.

The private beta is shipped in autonomous waves. The platform and its hardened, gated infrastructure are built and green — the final cutover to beta.h0sint.com is underway, and invites go out as testers are onboarded.

WAVE 0

Audit & risk register

shipped

Full codebase and live-server audit, risk register and a manual-action checklist — the ground truth for everything that followed.

WAVE 1

Foundation

shipped

App-level security middleware (headers + enforcing CSP, real-IP handling), containerized reverse-proxy infrastructure, production WSGI, observability/SIEM wiring, CI, and the landing refresh.

WAVE 2

Deception & analytics

shipped

App-level honeypot routes and canary tokens (log-only), privacy-first self-hosted analytics, and SIEM detections with fail2ban — so scanners are caught and surfaced on a security dashboard from day one.

WAVE 3

Stabilization, QA & docs

shipped

Stabilization sweep from the audit, security and smoke tests, and a full documentation refresh — README, onboarding and the complete beta runbook set.

WAVE 4

Cutover & onboarding

in progress

DNS, OAuth, firewall, TLS and the beta@h0sint.com invite alias — then deploy behind two independent gates (edge Basic-Auth + Google-login allowlist) and onboard the first cohort. This is where your request lands.

// 03 — who should apply

Built for teams who have to defend the answer.

h0SINT is engineered for buyers where "trust me" isn't an answer — where the report gets read by a board, an underwriter, a counterparty or a regulator.

Due-diligence analysts

Technical & vendor DD teams producing defensible, audience-ready security assessments before a deal closes.

Cyber-insurers

Underwriting and risk teams pricing external exposure with evidence-backed, per-audience scoring.

VC / PE firms

Investment and portfolio teams assessing target and portfolio-company attack surface at speed.

MSSPs & security teams

Managed-security and internal teams running continuous, self-hosted external recon across many clients or domains.

// 04 — what beta means

A closed beta, run in the open.

private & gated

Invite-only access

Every seat is invite-gated behind two independent gates — no anonymous access. We onboard in small waves so each tester gets real attention.

your side of the wall

Self-hosted by design

h0SINT runs on your hardware with local models. Sensitive client data never leaves your perimeter — a hard requirement for diligence, legal and defense work.

the exchange

Feedback for a front-row seat

We ask testers to use it on real engagements and tell us what breaks and what's missing. You get a direct line to the build team and shape the roadmap.

// 05 — faq

Questions testers ask first.

Q.Where does my data go?
Nowhere you don't control. h0SINT is self-hosted and runs on your own hardware, with local LLM support so analysis can run entirely on-prem. There is no third-party data egress by design — sensitive client and target data stays inside your perimeter.
Q.Can it run fully offline / with local AI?
Yes. The platform supports local models (e.g. via Ollama) for analysis, dreaming and the dataroom RAG, alongside optional cloud providers if you choose to enable them. A privacy wall gates what leaves the box, and a local pin never silently falls back to the cloud.
Q.How is the beta secured?
The hosted beta sits behind two independent gates — an edge Basic-Auth gate and a Google-login allowlist — with TLS, security headers, rate-limiting, a honeypot/deception layer and SIEM detections. Only invited testers get in.
Q.What's expected of me as a tester?
Use it on real work, and tell us the truth about it. We want candid feedback on accuracy, workflow and gaps — bug reports, feature requests and the occasional "this report wouldn't survive my board." In return you get early access and direct influence on the roadmap.
Q.What does it cost during the beta?
The private beta is free for accepted testers. It's built free/open-source-first and self-hosted, so beyond your own infrastructure and any optional cloud AI you choose to enable, there's nothing to pay during the program.
Q.How do I get in?
Fill out the access request below with your use case. We review every serious request and onboard in waves — accepted testers receive an invite to beta.h0sint.com.
// request access

Apply for the private beta.

Tell us who you are and what you'd use h0SINT for. We reply to every serious request and onboard in waves.

  • Invite-gated · limited cohort
  • Self-hosted · zero data egress
  • Direct line to the build team
  • Free for accepted testers

No account needed · this opens your mail client to beta@h0sint.com.
We reply to every serious request. Invite only.