A real Linux host, real scenarios, real timelines — and labels on every claim.
No E-ZETTA Safe Guard agent is installed on this host. No official installer, package or enrollment mechanism was available to us, so we did not invent one. Everything you can trigger below is a controlled lab scenario that we wrote and that runs on this machine. It is labelled CONTROLLED LAB EVENT everywhere it appears. It is not a Safe Guard product detection, and we will not present it as one.
Live state of this demonstration host, read from the machine you are talking to.
Live mode streams events from the host as a scenario runs. Replay mode plays back a finished run, event by event, from its stored evidence.
Six scenarios, allowlisted by id. They touch loopback and a disposable lab directory — nothing else. You cannot supply a command, a URL, an IP or a file path: the API accepts an allowlisted scenario id and nothing more.
Allowlist · timeout · rate limit · queue · one active run at a time · automatic reset to baseline · append-only audit trail. A run that fails or times out still resets the lab.
Written for the person deciding whether to spend money, not for a search engine.
| Question | Honest answer |
|---|
Every capability carries exactly one label. Labels are the product here — a claim without one is marketing.
| Claim | Class | Basis |
|---|
The second column is the one worth reading. Most vendors do not print it.
How this box is actually wired. Verified on this lab.
| Component | Detail |
|---|
Every completed run writes a bundle: timeline, scenario definition, requested action, events, logs, before/after state, an HTML report, a zip, and SHA256SUMS so you can verify none of it changed after we handed it to you. Bundles contain no secrets.
This is the shape of what a client receives after an audit engagement. Run a scenario above and this becomes a real, downloadable report for that run.
The offer is a human-run server audit. There is no self-serve trial, and we are not going to pretend there is one.
A human looks at your Linux server and tells you what is already hitting it. We will show you the log lines, labelled — including the ones that did not turn up anything.
security.clients.help →The wider Clients.Help practice: the people who audit, install, configure and monitor the defence layer for you.
clients.help →