Loading catalog…
Product briefing
ArcoreAegis
ProductionSecurity & Assurance
A cybersecurity governance, risk, and compliance platform that combines framework management, system categorization, risk assessment, audit evidence workflows, penetration-testing tracking, workforce capability mapping, and component health monitoring.
API: Available
Endpoints
6
Key features
6
Stack components
8
Controls noted
4
What changed
May 15, 2026: Added governance-aligned copy, compare tooling support, and transparency notes.
Key Features
- 1Multi-framework library and control mapping
- 2FIPS 199 system categorization and risk assessment workflows
- 3Audit plans, findings, evidence, and CIA monitoring
- 4Penetration testing and red-team project tracking
- 5NICE workforce, certification, and skill-gap mapping
- 6Component monitoring and health-check dashboards
API Endpoints
| Method | Path | Description |
|---|---|---|
| GET | /api/frameworks/frameworks/ | List supported compliance frameworks |
| GET | /api/grc/risks/ | Retrieve risk assessment data |
| POST | /api/auditing/findings/ | Log new audit findings/POAM items |
| GET | /api/auditing/evidence/ | Access compliance evidence repository |
| GET | /api/pentesting/projects/ | List penetration-testing engagements |
| GET | /api/workforce/skill-gap-analyses/ | Retrieve workforce capability gap analyses |
Usage Example
python
import requests
# Example interaction
response = requests.get(
url="https://api.arcore.internal/api/frameworks/frameworks/",
headers={"Authorization": "Bearer <token>"}
)
print(response.json())Recommended next products
Tech Stack
PythonDjangoReactVitePostgreSQLMaterial-UIRechartsTanStack Query
Authentication
- •**Header:** `Authorization: Bearer <token>`
- •**Scopes:** RBAC is enforced at the object level via `ArcoreCodex` policies.
Compliance & Security
Compliance
- ✓Role-Based Access Control (RBAC) per engagement
- ✓Audit logging for all compliance artifact changes
- ✓FIPS 199 compliant system categorization
Security
- ✓Role-Based Access Control (RBAC) per engagement
Coming Soon
4 plannedRisk Heatmaps (5x5 Matrix View)
Target: Q2 2025
Automated PDF/Excel Report Generation
Target: Q3 2025
SIEM/Vulnerability Scanner Integration
Target: Q2 2025
Multi-tenancy (Organization Isolation)
Target: Q3 2025
Related Products
Arcore Sentinel
A high-performance application testing service built with .NET 8.0 and Blazor. Sentinel provides multi-protocol testing (REST API, Database, WebSocket), load testing with detailed performance metrics, API compliance analysis, and real-time health monitoring with comprehensive test result storage.
Multi-Protocol Testing (REST API, SQL Database, WebSocket)
Load & Performance Testing with Concurrent User Simulation
.NETBlazorEntity Framework Core
4 endpointsOpen
Arcore Test
An automated architecture discovery and tech-stack scanning platform. ArcoreTest traverses application repositories and database schemas to build a living inventory of applications, components, triggers, actions, technologies, and test scenarios for governance and review.
Automated repository and database introspection
Centralized metadata registry for applications, components, triggers, and actions
PythonDjangoPostgreSQL
5 endpointsOpen
Arcore Codex
The 'Legal Brain' of Arcore. Codex provides a dual-engine architecture for digitizing federal contracts (financials, CLINs, rates) and enforcing executable policy-as-code using OPA/Rego for AI guardrails, data governance, and dynamic access control.
Federal Contract Digitization (CLINs/Rate Cards)
Policy-as-Code Engine (OPA/Rego)
PythonDjangoOPA (Open Policy Agent)
4 endpointsOpen