Qasقَس

Security that respects your data. A self-hosted suite for operators who want to own their stack.

Phase 1 — Console alpha

What it is

Qas is a self-hosted security suite built around a single Console. Each product is its own self-contained service — uninstall one and the others keep running. The Console is the cross-product control plane: catalog, identity, install/uninstall, and a unified view across the whole suite.

Operators own their data. No phone-home, no required SaaS dependency, no per-seat license. The whole suite runs on the operator's own server.

The catalog

Aasasعَسّاس · The Night Patrol Threat-feed collector. Pulls 35,000+ malicious IPs from six feeds every day. Live.

Sadadسَدّاد · The Sealer Network detection and firewall enforcement. Live.

Raqibرَقيب · The Watcher Endpoint detection and response. Phase 1 built, deployment pending.

Nasehناصِح · The Advisor CVE intelligence — feeds × installed-product inventory → advisories.

Console— Web admin UI for the SOC team. Reads each product's local API. Real user store, real session-grade auth.

How it's built

Independent products. Each is its own service with its own local API. Removing one never breaks the others.
One Console. The cross-product surface — catalog, identity, audit, install/uninstall — lives in a single place.
SPEC-bound. Every product ships a manifest validated against a binding schema. Same contracts, every time.
Free, no paid framing. Self-hosted first; not a SaaS in disguise.

Status

Phase

1 — Console + auth alpha

Live

Aasas, Sadad

Pricing

Free, self-hosted

Started

2024