Deny-by-default. Server-authorized. RLS-enforced.
Provision, monitor, and score isolated cyber-range exercises.
SentinelCore controls lab sessions across Proxmox, pfSense and Wazuh through an authenticated orchestration agent — never from the browser. Every action is scoped to an organization and session, and every administrative event is immutably audited.
Orchestrated provisioning
All privileged ops route through the SentinelCore agent — no direct hypervisor access.
Live telemetry
Wazuh alerts and containment status surface per lab session, per organization.
Least-privilege roles
Student, Instructor, Lab Operator and Administrator — enforced server-side and via RLS.
Immutable audit
Every allowlisted agent action, evidence upload and destructive confirmation is preserved.