113SEC  —  TECHNOLOGY
X000Y000
[113SEC]TR
SUPPORT
+
+
[ 03 ] — TECHNOLOGY

&TECHNOLOGY

Open-source engines, enterprise discipline and AI on top. We assemble researched, field-tested tools into one clear playbook — then run it for SMBs who can't staff a security team of their own.

STACKWAZUH · AWS
AICLAUDE-CLASS
PLATFORM113SEC MSP
[ 3.1 ] — APPROACH

We don't buy a black box and resell its dashboard. We build on open-source cores we can read, audit and tune — wrapped in the operational discipline of an enterprise SOC.

Open where it earns us trust. Disciplined where it keeps you safe. AI where it saves an analyst an hour.

[ 3.2 ] — CAPABILITIES

WHAT THE
STACK · DOES

  • 01
    AI-Triaged SOC

    Wazuh 4.x is our SIEM core. Every alert is read first by a Claude-class model that scores severity, correlates context and silences noise — escalating only real threats to a human analyst, in seconds.

    SIEM
  • 02
    Vulnerability & XDR

    Continuous CVE detection and CIS security configuration assessment across every endpoint, surfaced in our Hunter XDR view — so weak hosts are found and scored before an attacker finds them.

    XDR
  • 03
    Active Response

    SOAR-style automation contains the obvious: brute-force SSH and web attacks are firewall-dropped on sight. Destructive actions — disabling accounts, isolating hosts — always pass a human checkpoint.

    SOAR
  • 04
    Network & NOC

    Zabbix 7 watches every server, firewall and switch for availability, load and capacity. Heartbeat-driven status means we see a host go quiet before your users ever notice.

    NOC
  • 05
    Patch Management

    Missing updates are the breach nobody sees coming. We track pending patches per machine across Linux and Windows, schedule them safely and report what was closed.

    PATCH
  • 06
    Backup & DR

    A 3-2-1-1 strategy with Veeam, KVKK-aligned and immutable where it counts. We test restores on a schedule — proving recovery time, not just storage consumed.

    DR
  • 07
    Email → Ticket → Teams

    Support mail lands as a ticket and a Microsoft Teams notification automatically through the Graph API. Nothing waits in an inbox nobody is watching.

    FLOW
  • 08
    RMM — Remote Monitoring

    Our own remote monitoring & management agent inventories hardware and software, runs whitelisted scripts and keeps a live view of every managed device — with signed commands and a kill switch.

    RMM
+FIG.01 — CAPABILITY MESH
[ 3.3 ] — THE STACK

EIGHT TOOLS
ONE & SYSTEM

01

Wazuh 4.x

The SIEM heart of the platform — log analysis, file integrity, vulnerability detection and active response. Open-source, fully auditable, tuned by us.

02

Zabbix 7

Infrastructure and network monitoring. Availability, performance and capacity for servers, firewalls and switches, feeding our NOC view.

03

AWS

The cloud foundation — EC2, S3, VPC, GuardDuty and Security Hub. Resilient, monitored and managed under a Turkey entity with KDV invoicing.

04

Microsoft 365

Identity, email and collaboration. Entra ID, Exchange and Teams — secured with MFA, DKIM/DMARC and Graph-driven automation.

05

Veeam

Backup and disaster recovery. Immutable, encrypted, 3-2-1-1 — with restore tests that prove the plan actually works.

06

Cisco · Sophos · FortiGate

The network and perimeter layer — Meraki, Sophos XGS and FortiGate NGFW — feeding firewall events straight into the SOC.

07

Claude AI

The triage brain. Claude-class models read alerts first, enrich them with IOCs and context, and escalate only what's real — turning raw signal into a decision.

08

113SEC MSP Platform

The glue. Our own multi-tenant platform binds every tool together into one operator console — dashboards, Hunter, RMM and reports.

WAZUH · ZABBIX · AWS · MICROSOFT 365 · VEEAM · CISCO · SOPHOS · FORTIGATE · CLAUDE AI · 
[ 3.4 ] — BY THE NUMBERS
28+Detection rules mapped to MITRE ATT&CK
8Integrated tools in one operator console
<5minMedian AI triage time per alert
99.98%Monitored platform uptime target
[ 3.5 ] — THE PLATFORM

ONE PANE
· OF GLASS

++FIG.02 — MSP CONSOLE

Every tool in the stack reports into one place: msp.113sec.com — the 113SEC operator console.

A sci-fi dark SOC dashboard puts active threats, open tickets, online servers and SLA on a single screen. The Hunter module drills into live logs, vulnerabilities, firewall events, patches and active response — every alert backed by an AI analysis panel with severity, summary, recommendation and IOCs.

The RMM view inventories and controls every managed device. Monthly reports arrive in plain language — what happened, what we did, what's next — so leadership sees value, not jargon.

It's multi-tenant by design: each customer is fully isolated, with their own data, dashboards and notifications.

VISIT MSP PORTAL ↗

"TOOLS DON'T MAKE A SECURITY TEAM. DISCIPLINE DOES — AND AI BUYS BACK THE HOURS TO PRACTISE IT."

MEET THE
STUDIO

MEET THE STUDIO ⟶