Staff preview. You are viewing the Emutare Software Portal through the staff VPN — the public sees a coming-soon page.
Emutare Solutions

What every Emutare product actually does.

A deep look at the platform — identity, cyber-awareness, policy compliance, workspace intelligence, and the Intelio security suite — so you know exactly what you're getting before you open a single app.

IDEX — Identity Nixus — Cyber-awareness Integria — Policy compliance Cognita — Workspace AI Intelio — Security suite Coming soon

IDEX

One platform for every identity — people, machines, and everything in between.
IAMIGAPAMLive

IDEX is a complete identity platform for modern organisations — Identity & Access Management (IAM), Identity Governance & Administration (IGA), and Privileged Access Management (PAM) in one product. It covers the full identity lifecycle: onboarding a new hire, granting exactly the right access, continuously governing and certifying that access, protecting every sign-in with adaptive risk-based security, and cleanly offboarding when someone leaves. It secures human identities, contractor and guest identities, and machine/workload identities — from a single console. IDEX also doubles as the organisation's single sign-on provider: products redirect users to IDEX to authenticate and hand the session back.

"Governed access, adaptive security, zero standing privilege — IAM + IGA + PAM, without stitching three vendors together."

The IDEX family

Corporate

IDEX Corporate

The full IAM/IGA/PAM console for the whole organisation — sold in two tiers, Starter and Standard.

For businesses, IT/security teams, IGA & compliance admins
Individual

IDEX Individual

A personal identity home — sign-in security, passkeys, a personal vault, device login, and SSO into work apps.

For end users and employees; one shared login routes each person to the right experience
Extension

IDEX Browser Extension

One-click vault autofill and sign-in from the browser — plus optional policy (Integria) and awareness (Nixus) modules for the rest of the suite.

Chrome, Edge, Safari (MV3) and Firefox (MV2)
Standard tier

IDEX Machine Identity Agent

A lightweight on-host agent that gives non-human workloads a strong, attested identity and short-lived credentials — no static secrets.

Servers, workloads, CI/CD, devices — Windows, Linux, macOS, Android

Why IDEX

One platform, not threeIAM, IGA, and PAM are usually separate vendors. IDEX is one product with one identity backbone — people, contractors, guests, and machines together.
Zero standing privilegeJIT access, time-boxed elevation, brokered privileged sessions, and short-lived workload certificates — access is earned and expires, not held forever.
Adaptive security on by defaultEvery sign-in is risk-scored in real time; low-risk stays frictionless, high-risk is challenged or blocked automatically — no static rules to babysit.
Machine identity first-classServers and workloads get attested, secretless identities — a category most identity products ignore.
Governed by designEven the most powerful accounts are governed by a board with unanimous succession and quorum-gated elevation — governance isn't bolted on, it's the foundation.
Modern authentication everywherePasskeys, hardware keys, biometrics with liveness, phishing-resistant and passwordless sign-in — plus passwordless device login for the OS itself.

Feature catalogue — IDEX Corporate

My Identity & Self-Service
My profile — a personal identity home: who you are, your roles, your organisation.
My team / My groups — see your reporting line and the groups you belong to.
Sign-in & security — manage your own passwords, passkeys, MFA, and trusted devices.
My apps — every application you've been granted, one click to launch.
My access — a transparent view of exactly what you can access and why.
Access requests — request new access with a guided, policy-aware workflow that routes to the right approvers.
Identity Governance & Administration (IGA)
People — the authoritative directory of employees, contractors, and guests.
Onboarding — structured new-hire provisioning with staged HR / manager / security sign-off.
Lifecycle automation — automated joiner/mover/leaver flows; access is provisioned and revoked automatically.
Birthright access — new hires automatically receive the access their job title entitles them to on day one.
Contractors & guests — first-class onboarding for non-employees, with the right guard-rails.
JIT (Just-in-Time) access — time-boxed, self-expiring access instead of permanent standing privilege.
Access certifications — scheduled campaigns where managers and owners review and attest to who has access to what.
Separation of Duties (SoD) — detect and prevent toxic combinations of access before they're granted.
Reconciliation — continuously compare granted vs. actual access and flag drift.
What-if simulator — model an access or role change before you make it and see the blast radius.
Access intelligence / role mining — analytics that surface over-provisioning and suggest cleaner roles.
Compliance, Audit & Logs — map controls to frameworks, with a tamper-evident, hash-chained audit trail of every identity event.
Identity verification (KYC / KYB) — verify real people and real companies, with graded identity assurance levels.
Privacy & consent — manage data-subject consent and privacy obligations.
Verifiable credentials (VC / DIDs) — issue and verify portable, cryptographic credentials.
Sign-in Security & Authentication
Sign-in methods & MFA settings — configure and enforce multi-factor authentication.
Passkeys & phishing-resistant auth — modern, un-phishable sign-in.
Hardware keys (FIDO2 / WebAuthn) — security-key support, including for the highest-trust roles.
Biometric & liveness — biometric factors with anti-spoofing liveness checks.
Magic links & passwordless — frictionless, password-free sign-in.
Password policy & security passphrase — strong policy controls for orgs that still need passwords.
Session management — see and revoke active sessions.
Network security — IP / network-based access controls.
Device posture & baseline — only let compliant, healthy devices in; define a security baseline and check devices against it.
Identity Protection (adaptive security)
Risk dashboard — live view of risky sign-ins and identity threats.
Adaptive authentication — step up (force MFA) or block based on real-time risk; low-risk sign-ins stay frictionless.
Risk signal catalogue — a rich library of detectors (impossible travel, new device, suspicious IP, Tor exit nodes, and dozens more), each tunable per organisation.
Sign-in events & quarantine — investigate individual sign-ins with full risk context, and automatically contain suspicious accounts.
ITDR — Identity Threat Detection & Response: attack-path analysis and automated response.
Token binding — bind sessions to devices to stop token theft and replay.
CAEP streams — Continuous Access Evaluation: react to risk changes in real time across connected apps.
Authorization & Access Control
Authorization engine — centralised, policy-based decisions on who can do what.
ReBAC fine-grained authorization — relationship-based access control for precise, object-level permissions.
AI agents — govern autonomous/AI agents as first-class identities with scoped, revocable access.
Service accounts — inventory and govern non-human service accounts (part of Starter governance).
Organisation & Structure
Company profile — the organisation's canonical record.
Branches, Departments, Groups, Subsidiaries — model any org structure, however complex.
Job titles & duties — define roles and the duties and access that come with them.
Software inventory — a governed catalogue of the software the org uses and approves.
Workspaces (B2B / CIAM) — customer and partner identity for external-facing use cases.
Integrations, SSO & Ecosystem
SSO outbound — IDEX as the identity provider for all your other apps.
SCIM provisioning — automatically create, update, and deactivate accounts in downstream apps.
Integration hub & Marketplace — modules, integrations, plugins, and extensions to connect IDEX to the tools you already use.
Federation — federate identity with external identity providers.
Licensing & cost governance — track software seats, assign and reclaim licences, and see utilisation so you stop paying for unused seats.
Super Admin & Sovereign Governance
Super Admin board — Super Admins are a governed board (up to five), not just "whoever has the role."
Board approvals & succession — adding or removing a Super Admin requires unanimous board approval; some seats are approval-only hardware-key custodians.
Sovereign elevation — the highest privileges are quorum-gated and time-boxed; day-to-day admin uses just-in-time elevation, not permanent god-mode.
Delegated admin grants — hand out scoped admin authority without over-granting.
Domain verification & config plans — prove ownership of your email domains and manage configuration declaratively (IaC).
Data Residency & Compliance
Data residency — keep identity data in the geographic region you require (EU / US / Asia), with region-to-region migration.
Residency certificates — cryptographically signed, publicly verifiable proof of where data lives.
Data migrations with pause/resume — move data between regions safely and controllably, down to row-level residency.
Compliance frameworks & audit chain — map to frameworks and produce evidence on demand.
Branded tenant login — your own branded sign-in at yourcompany.emutareidex.com or an attached custom domain, with per-tenant branding and passkey isolation.
Machine / Workload Identity Standard
Attestation-based identity — a lightweight on-host agent proves what a workload actually is before it's trusted.
Short-lived credentials — automatically-issued, short-lived certificates instead of long-lived API keys; nothing to leak, nothing to rotate by hand.
Isolated signing — signing keys are kept in a separate, isolated signer process on the host.
Workload inventory & access policy — a full inventory of machine identities placed by org structure, with policies governing exactly what each workload can reach.
Host posture & behaviour — continuously check host security posture and learn a behavioural baseline per workload; anomalies feed risk.
Access map & access log — visualise and audit every workload access.
Cross-platform agent — Windows, Linux, macOS, and Android at feature parity.
Privileged Access Management (PAM) Standard
Privileged accounts & managed targets — vault and manage privileged credentials for servers, databases, and apps.
Requests & approvals — no one holds privileged access permanently; they request it, it's approved, it expires.
Session recording — privileged sessions are brokered and recorded for full accountability.
Discovery — automatically find privileged accounts and targets across the estate.
Threat analytics & break-glass — detect privileged-access threats, with controlled emergency access when it's genuinely needed.
Secrets rotation & DevOps secrets — automatically rotate managed secrets on schedule and deliver secrets to pipelines securely.
Endpoint privilege management (EPM) — remove local admin rights and elevate specific actions instead.
Vault safes & operations console — active sessions, system health, and a complete privileged-access audit trail.
IDEX Individual & Device Login
Personal identity home — dashboard, account, activity log, preferences, and identity verification in one place.
Personal vault — a secure store for your passwords and secrets, usable across the web via the browser extension.
Device login — sign in to your Windows / Linux / macOS / Android machine with your IDEX account.
Passwordless by default — approve a login from your phone; no password to type.
Works offline — sign in even when the device can't reach the cloud.
Posture-gated — a device that fails the company's security baseline can be refused at login.

Plans — Starter vs Standard

Starter includes essentially the entire platform. Standard = Starter plus two advanced, security-heavy suites: Machine / Workload Identity and Privileged Access Management (PAM).

Capability areaStarterStandard
Identity lifecycle, onboarding, offboarding
Access requests, approvals, birthright access
Identity governance (certifications, SoD, reconciliation)
Adaptive security & identity protection (risk engine)
MFA, passkeys, hardware keys, biometric, device posture
SSO, SCIM provisioning, integrations, marketplace
Service accounts & AI-agent governance
Data residency, compliance frameworks, audit
Super Admin governance (board, elevation)
Machine / Workload Identity
Privileged Access Management (PAM)

Nixus

AI Cyber RoleDefence — turn every employee into your first line of defence.
Cyber-awarenessMITRE ATT&CKLive

Nixus is Emutare's cyber-awareness product — an AI-driven Cyber RoleDefence engine. Instead of one-size-fits-all training, Nixus generates security assessments that are aware of each person's actual role, branch, department, and the software they really use, then delivers them where work happens: in the web app, on mobile, and through a browser extension that nudges people in Gmail, Slack, and Teams the moment something risky appears. Every answer feeds a live resilience score built on MITRE ATT&CK and D3FEND, rolled up from individual employees through groups, departments, and branches to the whole company — and the results can be packaged into audit-grade AI compliance reports (ISO 27001, NIST CSF, Essential Eight) with verifiable, expiring share links auditors can check without an account.

"Role-aware cyber assessments, delivered where work actually happens."

Two editions

Corporate

Nixus CRD

AI Cyber RoleDefence for the whole org: role-targeted assessments, org-wide resilience metrics, remediation tracking, and audit-grade compliance reporting from one workspace.

For Cyber Admins, HR Admins, Compliance Officers, Branch Admins — and every employee
Individual

Nixus Cybersafe

Personal cyber-awareness you own — short lessons, streaks, a personal resilience score, threat-awareness quizzes, and your own view of the assessment engine.

For individuals self-managing their own security posture — no company required

Why Nixus

Role-aware by designAssessments are generated from each employee's real job title, duties, branch, department, and the apps they actually use — not a generic curriculum.
Defence where work happensThe browser extension raises in-context nudges and micro-assessments inside Gmail, Slack, and Teams — and turns AI-flagged suspicious emails and chats into instant security quizzes.
Resilience you can measureOne scoring model rolls up from a single employee through groups, departments, and branches to the whole company, with per-chart filters at every level.
Grounded in real frameworksEvery question and score maps to MITRE ATT&CK tactics and D3FEND defensive techniques, so coverage gaps are visible in the language security teams speak.
Audit-grade evidenceAI-generated compliance reports (ISO 27001, NIST CSF, Essential Eight and more) with expiring, revocable share links external auditors can verify without an account.
A closed remediation loopConcerns carry graduation rules; failed employees enter tracked remediation with escalating levels and admin alerts, and chronic cases surface automatically.

Feature catalogue

Personal — every employee
Dashboard — a role-aware home page: personal progress for employees, an organisation snapshot for admins.
My assessments — every role-targeted assessment in one place: recommended, in-progress, and completed, with one-click start, continue, or retake.
Assessment player — a focused question-by-question flow with live progress and an instant server-scored result on submit.
My concerns — your standing on every cyber concern tracked — passed, passing, in remediation, or chronic — with plain-language feedback on how many passes remain.
My metrics — your personal resilience dashboard: overall score, weakest attack tactic, strongest defence, trends, and full ATT&CK / D3FEND breakdowns.
Threat awareness — a live history of quizzes generated from real suspicious emails and chats your AI assistant flagged.
Notifications — a reminder bell that counts unfinished assessments and only clears when the work is actually done.
Assessments — admin
Library — the organisation's full assessment catalogue with status, criticality, question counts, and the concerns each one addresses.
Create assessment — an authoring studio: multi-correct answers, explanations, image and video attachments, and tagging against ATT&CK and D3FEND.
Concerns — the cyber concerns you track, each with criticality, framework coverage, graduation rules, and score views by department, branch, group, and employee.
Cohorts — automatically formed groups of employees sharing identical job titles, duties, software, and permissions — so the right people always get the right test.
Remediations — a live queue of everyone working through failed concerns; filter chronic or escalating cases and escalate directly.
Attempt review — question-level review of any completed attempt showing exactly where understanding broke down.
Assessment Engine
Overview — mission control for how Nixus generates and delivers assessments: rule-set status, pending changes, data-source health.
Data sources — declares exactly which signals the engine may read, with active, tier-locked, and stale sources clearly marked.
Generation rules & triggers — control how assessments are assembled, with schedule-based default triggers and a full editor for custom ones.
Delivery rules — decide where and when each role sees assessments, including working-hours windows and daily caps.
Content guardrails — hard limits on what the engine must never produce; every change is audited and attributed.
Interactivity — multiple-choice, scenario chains, or reasoning Q&A, with per-criticality overrides.
Rule packs — pre-built bundles of rules, triggers, and guardrails for specific industries, applied in one click.
Dry-run preview — simulate the next seven days of assessments for any employee before anything goes live.
Publish changes — promote pending edits to the live engine as a new versioned rule set, with publisher and time on record.
Reporting & Metrics
Metrics & Analytics — the org-wide resilience dashboard: score distribution, weekly trends, ATT&CK / D3FEND coverage, and branch / department / group comparisons, each chart with its own scope filter.
Score statistics — average, mode, minimum, maximum, variance, and standard deviation for any scope and date range.
Assessment overview — pass rate and average score for every employee, department, group, and branch in one sortable rollup.
AI Reports — pick a scope, a purpose (ISO 27001, NIST CSF, Essential Eight, Human Shield Fortification, Awareness, or custom), and a date range — an eleven-page report builds itself.
Report sharing & verification — downloadable PDFs or secure links with expiry dates, open tracking, and one-click revocation.
Public verification — a public page where auditors and regulators confirm a report is genuine, unexpired, and unrevoked — no account required.
Branch & Operations
Branch assessments, metrics & concerns — the same rich dashboards automatically pinned to a Branch Admin's own branch, so local leaders manage their people without seeing the rest of the company.
Delivery channels — manage the surfaces assessments reach employees through, anchored by the browser extension today.
Integrations — see the connected Emutare platforms feeding Nixus: identity and org structure from Idex, software inventory from Intelio.
Audit — a Super Admin record of administrative actions, alongside the audit trail kept for elevations and guardrail changes.
Access & security
Single sign-on — sign in through Idex once; Nixus, the extension, and the mobile app pick up your session automatically.
Role elevation (step up) — admin power is never left switched on: holders step up with a hardware key into a time-boxed session with a live countdown.
Security key (passkey) — FIDO2/WebAuthn keys prove possession locally on every elevation; only a signed challenge leaves your device.
Elevation audit trail — every step-up can carry a reason and is recorded, so privileged access is always explainable.
Read-only viewer roles — HR Admins and Compliance Officers see everything while every write control stays locked.
10-language experience — English, French, German, Spanish, Arabic, Italian, Japanese, Korean, Portuguese, and Chinese.
Cosmos AI & Browser extension
Cosmos AI assistant — answers plain-English questions about assessments, risk, and metrics — and takes you straight to the right page to act.
In-context nudges — risky actions in Gmail, Slack, and Teams surface security nudges and micro-assessments right where they happen.
Email & chat threat quizzes — when the AI flags a suspicious message as an attack, the moment becomes a short quiz whose result lands in your Threat awareness history within seconds.
Zero-setup install — one extension for the whole Emutare suite (Chrome, Edge, Firefox, Safari) that follows your Nixus login automatically.
Mobile app — iOS & Android with the assessment player, resilience metrics, concerns, reports, and role step-up matching the web app.

Integria

Policy & AI compliance guardrails — stop the risky message before it sends.
Policy complianceAI rewriteLive

Integria is Emutare's policy-compliance product: you write policies in plain language (or upload them as PDFs), organise them into groups, and Integria enforces them everywhere your people type. The moment a policy is saved, Integria compares it against the rest of your library and flags contradictions with suggested resolutions. A browser extension then watches the apps people actually use — Gmail, Outlook, LinkedIn, Slack, Teams, WhatsApp and more — flagging policy breaches as they're typed, blocking the risky send, and offering an AI rewrite the writer can accept in one click. Every violation and rewrite flows back into dashboards, rankings, and an audit trail that can be sliced by branch, department, group, or individual employee — and exported to CSV or PDF in any of ten languages.

"Set the rules. Integria keeps them."

Two editions

Corporate

Integria Corporate

Org-wide policy enforcement with dashboards, rankings, and audit trails scoped across branches, departments, groups, and employees.

For companies and compliance/security teams
Individual

Integria Individual

Personal policy guardrails — write rules for yourself or your kids, group them by person, and let Integria flag conflicts and rewrite risky messages automatically.

For individuals, parents, and households

Why Integria

Real-time, in the apps you useBreaches are flagged while the message is still being written — not after it ships.
Send-blocking with AI rewriteRisky messages are held at the Send button and rewritten to comply — accepted in one click.
Automatic conflict detectionEvery new policy is compared against your existing library; contradictions are flagged with suggested resolutions before they take effect.
Plain language or PDFNo rule syntax to learn — type "never share card numbers" and it's enforced.
True org-hierarchy scopingAssign policies, monitor apps, and slice every dashboard by organisation, branch, department, group, or individual employee.
Step-up admin securityElevated sessions re-prove a hardware key or passkey, last 30 minutes, and are recorded in the audit trail.

Feature catalogue

Dashboard
Policy Monitoring Dashboard — your compliance pulse on one screen: total violations, AI rewrites, apps monitored, policy documents, and a live risk score.
Risk Score — a 0–100 score computed from the severity of recent violations, colour-coded green, amber, or red.
Org-scope filtering — filter the entire dashboard by branch, department, group, or a single employee; every stat, chart, and table updates together.
Performance & activity over time — compare violations against AI rewrites by any org dimension, and watch trends week by week.
Recent violations feed — a searchable, filterable feed of the latest violations with severity, policy, and the application where each occurred.
Role-aware views — admins see the company rollup, branch admins their branch, employees a personal view — automatically.
Policy Manager
Create Policy — write a policy inline in plain language or upload it as a PDF; Integria enforces both the same way.
Policy Groups — bundle related policies into named groups like "Corporate Compliance" or "Policy for kids" and manage them as one unit.
Conflict detection & resolution — saved policies are compared against your library; resolve flagged conflicts with guided choices.
Active / dormant policies — see exactly what's enforced right now and toggle any policy with a single click.
Assignments — assign each policy organisation-wide or to any combination of branches, departments, groups, and individual employees.
Search by name or context — find a rule even when you don't remember what it's called, by what it allows or forbids.
Policy viewer & editor — read any policy's full text or PDF in place; rename, regroup, replace content, or flip enabled/disabled without recreating it.
Policy Check & AI Activity
Interactive content check — paste any message or draft and Integria checks it against your active policies on the spot.
AI-safe rewrite — failed content gets a compliant rewrite you can copy with one click; clean content gets a clear "safe to send" verdict.
AI rewrite log — every rewrite recorded with the original and compliant versions side by side, plus the policy that triggered it.
Rewrites by application & rankings — see which apps required the most corrections and where risky writing is caught most often.
Violations & Audit
Violations overview — total violations, apps monitored, your top violating app, and the current risk score on one page.
Severity levels — every violation graded Critical, High, Medium, or Low so teams triage what matters first.
Highest-violations ranking — rank branches, departments, groups, or employees to see exactly where policy risk concentrates.
Filters and search — filter by policy, org scope, date range, and free text; stats, charts, rankings, and tables stay in sync.
Full audit trail — a complete, searchable log of policy changes, uploads, and violations with timestamps and the user involved — exportable to CSV.
Applications monitoring
Applications Monitor — every connected application with its violation and rewrite counts, monitoring status, and connection date.
Add Application — register any app or URL in seconds so Integria can monitor it.
System-wide monitoring — turn on monitor-all and every application is covered automatically; add specific apps to exclude or track individually.
Pause / resume & exclusions — pause monitoring for any application with one click, or exclude it while everything else stays covered.
Coverage by scope — assign applications organisation-wide or narrow monitoring to specific branches, departments, groups, or employees.
Access Control & Elevation
Step-up elevation — sensitive admin actions require re-proving a hardware key, passkey, or Windows Hello, so a borrowed session can never gain admin rights.
Time-boxed sessions — elevated sessions last 30 minutes and expire automatically, with an always-visible "Active as" indicator and one-click exit.
Audited elevation reasons — each step-up can carry a reason recorded in the audit trail, so every elevation is accountable.
Role doorways & User Access — see every elevated responsibility you hold and step into exactly the one you need; review everyone's responsibilities behind a step-up gate.
Browser extension — monitoring
One extension for the suite — Chrome, Edge, Firefox, and Safari; Integria's module unlocks automatically with an active subscription.
Flag-as-you-type checks — pauses in typing trigger a policy check, so breaches are flagged almost as soon as they're written.
Send-blocking — when a message breaks policy, the Send button locks and a panel explains exactly which policies were violated.
In-place AI rewrite — the blocked message comes with a suggested compliant rewrite you can edit and accept in one click; the send unlocks.
Plan-aware checking — business users are checked against company policies, individuals against personal ones — automatically.
Coverage — Gmail, Outlook, Yahoo, Zoho, Proton Mail, LinkedIn, Slack, Microsoft Teams, WhatsApp, Telegram, Discord, X, Facebook, Instagram, Reddit, and more.
Workspace & Platform
10 languages — English, French, German, Spanish, Arabic, Italian, Japanese, Korean, Portuguese, and Chinese.
Export everywhere — every table and report exports to CSV or prints straight to PDF, including non-Latin scripts.
Flexible charts & views — switch analytics between bar, line, area, donut, and scatter; flip listings between dense tables and scannable cards.
Notifications & global search — a violation bell with one-click jump to the full page, and search across policies, violations, and apps from every page.
Single sign-on & ecosystem switcher — sign in once with your Emutare identity, arrive silently from sibling products, and jump between them from inside Integria.

Cognita

Your unified workspace intelligence layer — search, understand, and act on everything you know.
Workspace AICosmos agentLive

Cognita brings everything you know — documents, connected apps, devices, and the open web — into one place you can search, understand, and act on, with an AI agent (Cosmos) that doesn't just answer but actually does the work. Knowledge is scattered across Drive, Notion, GitHub, email, local files, and multiple devices; every tool has its own search box and none of them see each other. Cognita is one brain for it all — governed with permissions, credentials, and an audit trail, and available on Web, Desktop, and Mobile from one account.

"Cognita is where your knowledge lives, gets understood, and gets acted on — across every device, safely."

Two plans

Individual

Cognita Individual

Personal knowledge, unified search, the Cosmos agent, and your paired devices — one brain for everything you know.

For individuals — no company required
Corporate

Cognita Corporate

Adds Team & members, governance (Vault + Software Inventory), and just-in-time role elevation. The plan is derived from company membership, with billing handled by a dedicated Billing module.

For teams and organisations

Why Cognita

An agent that actsCosmos doesn't just answer — it navigates the product, schedules recurring flows, signs in to your connected apps, and drives a real browser through multi-step web tasks.
One search across everythingCloud files, your knowledge base, and connected devices in one box — by name, by content, or semantic — with results that preview in-app.
Answers with receiptsChat is RAG-backed and grounded in your connected knowledge: every answer cites its sources.
Your devices, one fleetPair phone and laptop with a code, browse any device's files from any other, and search your phone from your desktop.
Credentials that stay secretThe Vault lets the agent sign in on your behalf via a single-use token — plaintext passwords never reach the app UI, and it hands off to you at any sign-in or 2FA wall.
Safe by designIdex single sign-on, MFA, just-in-time role elevation, and a security surface for sessions and audit — and voice commands confirm "is this right?" before anything executes.

Feature catalogue

Cosmos AI — the assistant at the core
Answer — questions grounded in your connected knowledge, with cited sources.
Navigate — drive the product by voice or text: "open Devices", "go to Analytics".
Schedule — turn plain language into recurring task flows.
Log in — autofills and submits sign-ins using your Vault credentials, handing off to you at any sign-in or 2FA wall; it never types passwords.
Voice input — Whisper transcription with an "is this right?" confirmation loop, so a misheard command is never executed.
Deterministic intent router — each prompt becomes a concrete action (navigate / schedule / vault-login / web task) before falling through to a normal AI answer.
The Browser Agent
Read & summarise — live pages ("summarise the latest news on Al Jazeera") with the summary written straight back into the session.
Sign in & fill forms — completes multi-step web tasks: navigate, click, type — handing control to you at the login wall.
Desktop & web modes — a live in-app browser view on desktop; a server-side cloud browser with screenshot streaming on web.
Live activity log — every step is visible, and running tasks surface in the side panel.
Unified Search & File Explorer
One search box — across cloud files, your knowledge base, and connected devices, fanned out and deduped.
Three modes — by name, by content, and semantic — with scope controls for which device and which sources to search.
In-app previews — clickable results open inside Cognita, not in another tab.
File Explorer — three views in one place: Cloud (connected storage), Devices (any paired device), and This device (your real local filesystem).
Knowledge base & Chat
Index files & folders — their text becomes searchable knowledge powering content/semantic search and cited answers.
Per-device attribution — indexed content is attributed to the device it came from, so it can surface per-device.
RAG-backed Chat — a conversational assistant whose answers cite their sources, with a choice of AI engine and graceful fallback.
Task Flows & Analytics
Task Flows — recurring work as scheduled, structured flows with a step editor and runner; each step can fan out to a browser-agent session.
Self-scheduling — a flow wakes itself at its set time; create one from natural language via Cosmos.
Analytics workspace — datasets, measures, monitors, automations, widgets, visualizations, versions, and sharing.
Describe a chart in words — Cosmos builds the widget over your real data.
Natural-language automations — "when tickets/hour > 5, post to #ops and SMS the on-call" — assembled into a draft you review and grant permissions on.
Devices & Integrations
Device fleet — status, storage, and activity for every paired device.
Pairing — generate a code on one device and enter it on another; works in both directions, across all apps.
Cross-device files — browse a device's files remotely, e.g. search your phone from your desktop.
Integrations — Notion, Google Drive, Dropbox, OneDrive, iCloud, GitHub, Gmail, Slack, and more; a Data Sources view manages what's indexed.
Vault, security & identity
Credential vault — the browser agent signs in on your behalf; a single-use token is passed and the plaintext password never reaches the app UI.
Governance pairing — on the corporate plan the Vault pairs with Software Inventory for org-wide oversight.
Emutare Idex SSO — single sign-on across the whole Emutare suite, plus multi-factor authentication with your chosen method.
Responsibility elevation — just-in-time step-up to a higher role on demand (corporate plan).
Security surface — active sessions, the audit log, and one-click access revocation.
Everywhere, in every language
Three tailored apps, one account — a full desktop workstation, an anywhere-access web app, and a phone-first mobile companion.
10 languages end-to-end — English, Spanish, French, German, Italian, Portuguese, Japanese, Chinese, Korean, and Arabic.
Composable architecture — Billing, Support, and Idex plug in as modules around the Cognita shell.
Supporting surfaces — live notifications with a real unread count, usage metrics, history of chats and agent sessions, settings, and in-app support.

Intelio

Unified endpoint protection & threat intelligence — one catalog, one engine library, one agent.
Threat IntelVuln MgmtUEMIn development

Emutare Intelio is a multi-product security platform built on three layers that share one threat-intelligence catalog, one detection-engine library, and one wire contract. The Threat Intelligence Service (TIS) is the research brain — it aggregates ~1,500 OSINT sources into a searchable, AI-synthesized threat encyclopedia and never executes anything. Intelio Vulnerability Management (VM) is the detection-engine suite — 23+ engines covering vulnerabilities, malware, rootkits, misconfigurations, weak controls, supply chain, and exposed secrets. Unified Endpoint Management (UEM) is the umbrella endpoint product that embeds VM and adds real-time response, MDM, patching, and deployment lifecycle across every endpoint type. All customer traffic — consoles and agents alike — enters through a single Customer API Gateway; no product backend is ever publicly addressable.

"Detection fused with threat intelligence — fix what attackers actually exploit, not just what CVSS says."

1,500 OSINT sources~355k CVEs~567k advisories~586k IOCs~325k detection rules23+ detection engines4 OS agentsLlama-first AI

Three layers, one platform

TIS

Threat Intelligence Service

The catalog and research brain: AI-synthesized research packages, a "Google for CVEs" public portal, and reputation lookups. It never executes anything.

Paid fleet-scoped console + free Sponsored research portal
VM

Intelio Vulnerability Management

Continuous discovery, assessment, prioritization, and remediation across on-prem, cloud, containers, network, web/API, and mobile.

Sellable standalone (scan-only) and embedded in UEM
UEM

Unified Endpoint Management

The umbrella endpoint product embedding VM and adding real-time block, quarantine, patch dispatch, and MDM control across the whole fleet.

A large console covering fleet, policy, EDR, and governance

Why Intelio

One intelligence backboneEvery product shares the same threat-intelligence catalog, so detection is always fused with what attackers actually exploit in the wild.
Corroboration, not duplicationEngines deliberately overlap; a correlation layer merges agreeing findings and boosts confidence with independent-source math.
Explainable risk scoringThe Intelio Risk Score is a deterministic 0–100 blend of CVSS, EPSS, CISA KEV, asset criticality, actor activity, and exposure — every score ships a per-factor rationale, positioned against Tenable VPR and Qualys TruRisk on explainability.
Sovereign-ready AISelf-hosted local Llama is primary for every tier, Groq Llama is the cloud fallback, and the emergency safety net can be disabled for sovereign or air-gapped deployments.
A single front doorA mandatory customer gateway with per-customer keys, rate limiting, and audit logging on every request — anonymization and k-anonymity gating happen before anything enters the shared pipeline.
A compounding flywheelAgents ship telemetry, the gateway anonymizes it, and enriched intelligence flows back to every customer — one enforced privacy chokepoint.

Feature catalogue

TIS — Research & search
Research Packages — search any threat (CVE, actor, malware, topic) and receive a bundled encyclopedia: 11 sections per entity plus threat-hunting, detection-engineering, cyber-risk, and analyst perspectives — every claim source-cited, with freshness tracking and "branch deeper" links.
AI Search — natural-language queries across the local corpus with web-search fallback, answered by LLM synthesis with citations.
Multi-mode search — intelligent (LLM-routed), semantic (vector), and lexical (sub-100 ms) modes, plus a full-spectrum entity composer.
CVE intelligence — multi-section CVE detail pages, CVE compare, saved searches, CISA KEV, and trending CVEs.
Reputation lookups — IP, domain, URL, file hash, phone, and email.
Two front doors — a paid fleet-scoped TIS console for tenants, and a free public research portal — "Google for CVEs" — for anonymous researchers.
TIS — Dashboards & adversary intel
Situational dashboards — Daily Brief, Industry Landscape, Geopolitical dashboard, World Threat Map, ATT&CK Matrix and technique pages, CWE pages, and Hardening Hubs.
Adversary intel — threat actors, malware families, campaigns, ransomware leak sites and victims, stealer-log exposure, and sanctions checks.
Feeds & catalogs — advisory firehose, IOC browser, detection rules, and the OSINT source catalog.
Paid fleet features — tailored findings, affected assets, software inventory, org CVE search, and fleet-scoped ATT&CK coverage.
Cross-feed intel index — ask "what does Intelio know about X" across every feed, with per-feed evidence, refreshed every 30 minutes.
TIS — Data coverage & AI engine
1,500 cataloged OSINT sources — across 19 categories, ingested via pluggable connectors with dedup, scoring, and health auditing.
Deep corpus — ~355k CVEs, ~567k advisories, ~586k IOCs, ~325k detection rules, ~180k fraud reports, plus LOLBins, ransomware intel, CWEs, malware families, ATT&CK techniques, and threat actors.
Llama-first AI — self-hosted local Llama primary, cloud Llama fallback, four cost tiers behind an LLM router with caching and circuit breakers.
Pre-generated packages — search routes to packages instead of synthesizing per query, decoupling AI cost from traffic.
VM — Detection engine suite
Vulnerabilities — a TIS-driven CVE matcher plus industry-standard scanning engines for hosts, lockfiles, and web surfaces.
Malware & rootkits — signature and rule-based malware detection with a dedicated rootkit scanner.
Misconfigurations & weak controls — misconfig scanning and hardening checks against security baselines.
Secrets & supply chain — exposed-secret detection, supply-chain matching, and SBOM collection.
Network & web — intrusion detection, network scanning, and OWASP-coverage web/DAST scanning.
Posture & logs — endpoint posture queries, log analysis, and mobile/macOS patch matching.
Ensemble design — engines deliberately overlap; a correlation layer merges agreeing findings and boosts confidence — corroboration, not duplication.
VM — Scanning modes & risk score
Agent-based — the engine suite embedded in the shared Emutare endpoint agents, license-gated per module.
Agentless network — authenticated and unauthenticated scans, distributed scanners for segmented networks, safe-scan mode, profiles, and scheduling.
Cloud (no agent) — AWS, GCP, Azure, and Kubernetes scanners plus cloud-posture misconfiguration checks.
Web/API — application and API scanning, SBOM ingestion (CycloneDX/SPDX), and third-party scanner import.
Intelio Risk Score — a deterministic, fully explainable 0–100 score per finding blending CVSS, EPSS exploit probability, CISA KEV, asset criticality, threat-actor activity, and exposure — with a per-factor rationale on every score.
VM — Portal & workflow
Inventory — devices, cloud workloads, network/IoT/OT devices, and SBOM imports.
Vulnerabilities — prioritized findings, a threat feed (KEV/EPSS/ExploitDB), detection rules, and attack paths with blast radius.
Remediation — patch jobs with staged rollout and rollback, playbooks, and an AI assistant.
Workflow — Jira/ServiceNow/Linear tickets, time-boxed risk acceptances, and false-positive suppressions.
Compliance — SOC 2, ISO 27001, PCI-DSS, HIPAA, NIST, GDPR, and DORA templates; evidence packs, scheduled exports, an append-only audit log, and access reviews.
Integrations — a vendor-neutral connector framework with shipped adapters for Splunk, Microsoft Sentinel, Jira, ServiceNow, PagerDuty, and Teams.
UEM — Console
Fleet & devices — inventory, device detail, CMDB, live processes, telemetry, compliance, grouping by user/branch/department, and IoT / OT-ICS views.
Enrollment & deployment — zero-touch provisioning, MDM enrollment, imaging, software deployment, loaner pools, and retirement/lost-device workflows.
Policy — access, browser, kiosk, and learning-mode baselines; config profiles, per-app VPN, update rings, drift detection, profile signing, and versioning.
Patching & vulnerability — CVE detail, patch-deferral rings, LAPS, OS end-of-life tracking, driver inventory, SBOM, and cross-product risk.
Detection & response (EDR) — live kernel-event stream, ATT&CK threat hunting, live-response shell, SOAR playbook builder, sandbox detonation, memory forensics, tamper monitoring, and ransomware response.
Endpoint control — firewall, web filter, download rules, application control, USB/device control, DLP, and insider-risk scoring.
AI & governance — a Copilot chat assistant, ML model management, NIST CSF/800-53 and SCAP benchmarks, GDPR DSR, risk register, incident management, BYOK keys, PAM with session playback, identity governance, and a report builder.
Multi-tenancy — MSP-oriented tenant views and custom dashboards.
UEM — Endpoint agents
Windows — kernel telemetry (process, image-load, DNS), embedded VM engines, behaviour rules, download blocking, web filtering, and watchdog self-protection with binary integrity checks.
Linux — the same engine and enforcement stack with kernel-level collection and audit integration.
Android — full MDM as Device Owner or work profile: lock, wipe, camera control, password policy, push commands, an on-device threat classifier, and compliance posture checks.
macOS — a functional daemon with EndpointSecurity detection, compliance, enforcers, and the full scanning sidecar set.
One wire contract — the same agents serve all three products: TIS verdicts enrich local detection, VM engines run in-process, and UEM drives real-time actions.
Platform & Customer API Gateway
Single front door — customers and agents never reach product backends directly; per-customer API keys, rate limiting, audit logging on every request, webhook fanout, and SIEM forwarding.
Plan bundles — Sponsored (free), TIS Individual and Team, VM-standalone, UEM, and UEM-Team — each resolving to a capability manifest consumed by the same agent binary.
Privacy chokepoint — anonymization, k-anonymity thresholds, and opt-in gating happen at the gateway before anything enters the shared intelligence pipeline.
Rule-feed distribution — curated signature and rule feeds delivered to agents with per-plan variants, validation, atomic delivery, and staleness monitoring.
Operations — full observability with auto-provisioned dashboards and alerting, documented DR, an internal admin console, and a guided 23-stop interactive product tour for demos.

Coming soon

The next Emutare products — identity recognition, marketing, and the Intelio expansion.
Idex Recognition Coming soon

Facial recognition and object detection for identity workflows.

Infuse Marketing Coming soon

Social media management and influencer marketing at scale.

Intelio Dependency Management Coming soon

SBOM, supply-chain risk, and open-source dependency hygiene.

Intelio Software Testing Coming soon

SAST, DAST, and continuous security testing in CI/CD.

One account opens every product

Sign in once with your Emutare account and every live product — IDEX, Nixus, Integria, and Cognita — is a click away.

↑ Back to top