Enterprise Cybersecurity

URIP — Unified Risk Intelligence Platform

Full-stack enterprise cybersecurity risk management SaaS. Aggregates vulnerability data from CVSS, EPSS, and KEV into a composite risk score. Maps threats to MITRE ATT&CK APT groups. Tracks remediation with SLA enforcement. Built for automotive manufacturing enterprises.

FastAPIPostgreSQLPython 3.12NeonChart.jsJWTRailwayVercelGitHub ActionsMITRE ATT&CK

30 tests passingLiveEnterpriseLive → urip-frontend.vercel.app

# By The Numbers

221

Risks Seeded

~35

API Endpoints

187

APT Groups

37+

DB Tables

KEV Flagged

UI Pages

Tests Passing

LLM Reviewers

# Architecture

architecture.md

▋

# 8 Core Modules

End-to-end cybersecurity risk lifecycle from detection to remediation.

Dashboard

Real-time KPIs, risk distribution charts, SLA compliance banner, IOC alerts, dark web alerts. Single-glance operational awareness.

Risk Register

17-column sortable table: CVSS, EPSS, KEV, Composite Score, Asset Tier, APT mapping. Cascading filters, view/assign modals. 221 risks (RE-001 to RE-221).

Composite Scoring

Formula: max(0, min(10, 0.55*CVSS + 2.5*EPSS + KEV_bonus + asset_bonus)). Additive model validated by Codex + Kimi consensus. All weights configurable.

MITRE ATT&CK Integration

187 real APT groups mapped to risks. Technique and tactic coverage. Threat actor profiles with campaign history and known TTPs.

Threat Intelligence

IOC feed integration, dark web monitoring alerts, geo-distributed threat statistics. 54 KEV-flagged risks, 5 IOC matches, 5 dark web alerts.

Acceptance Workflow

Risk acceptance with recommendation engine and APT warnings. CISO approve/reject flow. Audit trail on every decision.

Remediation Tracker

SLA countdown timers, Jira integration field, status progression. Track remediation from assignment through verification.

Reports & Compliance

PDF and Excel generation. CERT-In compliance reporting. Scheduled report delivery. Executive summaries and technical deep-dives.

# Key Endpoints

Module	Path	Description
Auth	/api/auth/*	JWT login, register, role-based access control
Dashboard	/api/dashboard/*	KPIs, risk distribution, SLA status, alerts
Risks	/api/risks/*	CRUD, filtering, sorting, composite scoring
Scoring	/api/scoring/*	CVSS+EPSS+KEV computation, config, formula versioning
Acceptance	/api/acceptance/*	Risk acceptance workflow, CISO approve/reject
Remediation	/api/remediation/*	SLA tracking, Jira integration, status updates
Reports	/api/reports/*	PDF/Excel generation, CERT-In compliance, scheduling
Threats	/api/threats/*	MITRE ATT&CK, IOC feed, dark web, APT mapping
Audit	/api/audit/*	Immutable action log, role-restricted access
Settings	/api/settings/*	Users, connectors, scoring config, tier keywords

# Full Stack

Backend	FastAPI · Python 3.12 · Pydantic v2 · ~35 endpoints · Railway
Auth	JWT (bcrypt) · RBAC (admin, ciso, analyst, viewer) · rate limiting
Database	PostgreSQL 16 (Neon) · 37+ tables · SQLAlchemy 2.0 · Alembic migrations
Scoring	CVSS 3.1 · EPSS (daily refresh) · KEV catalog · Asset criticality tiers
Threats	MITRE ATT&CK (187 APTs) · OTX IOC feed · Dark web alerts · Geo stats
Frontend	Vanilla JS · Chart.js · 8 pages · Responsive · Vercel static
Reports	PDF generation · Excel export · CERT-In compliance · Scheduled delivery
CI/CD	GitHub Actions · Vulnerability simulator (15 min) · EPSS refresh (daily) · Lint + test
Testing	30 pytest (scoring formula) · Input validation · Multi-LLM reviewed
Deploy	Railway (API) · Vercel (frontend) · Neon (database) · HTTPS-only

# Multi-LLM Audit

Codex (GPT-5.3)

Strategy + human review. Formula consensus. 2 full audit rounds. Score: 83/100 code quality.

Kimi (Moonshot)

QC Director. Code quality + security review. Score: 88/100 calculations. Identified input validation gaps.

Claude (Opus 4.6)

CEO orchestrator. Built full stack. 3 agent audit rounds. Architecture: 84/100. Security: 74/100.

Gemini

Architecture review via AFM agents. Validated composite scoring approach and database schema design.