Security

Local-first design

CustosXI analyzes network signals on your Windows PC. It is not a cloud SIEM. See Privacy Policy for what leaves your machine.

What CustosXI is not

• Not an antivirus or anti-malware product.
• Not a replacement for Windows Firewall or enterprise EDR/SIEM.
• Not a guarantee of complete threat detection or prevention.

Official downloads

Install only from custosxi.com or downloads.custosxi.com (or mirrors we explicitly list). Verify SHA-256 when published on the Download page. Do not run copies from unofficial mirrors, forums, or file hosts.

Privileges & external components

• Administrator rights may be required for install and the background service.
• Npcap is not bundled - install only from official Npcap sources at npcap.com when live capture is needed.
• Suricata is not bundled - optional GPL v2 third-party software; you install, update rules, and operate it separately.
• PostgreSQL server, GeoLite2 databases, and threat-intel feeds are not shipped with CustosXI; optional client libraries or app features may contact services you configure.
• Optional add-ons may call external APIs with keys you provide - review each vendor's security posture and terms.

Responsible disclosure

If you believe you found a security vulnerability in CustosXI or the official website, please report it responsibly before public disclosure.

• Email: security@custosxi.com
• Include: affected version, Windows version, clear reproduction steps, impact assessment.
• Do not include unnecessary personal data, full packet captures, or secrets.
• Allow reasonable time for investigation and remediation before publishing details.

Website security

HTTPS is enforced via Cloudflare. We avoid embedded third-party trackers and contact forms that store messages on-site - use email links instead.