CodeRaft Platform

CodeRaft is a self-hosted cybersecurity platform that deploys in minutes. One installer, one dashboard, three products — all managed from a unified interface.

Platform Overview

The CodeRaft Platform orchestrates deployment, licensing, and configuration of all security products through a single dashboard. Each product can be deployed individually or as a unified suite.

Installation Guide Deployment Guide Security Architecture High Availability

Products

EntraGuard

EntraGuard

Microsoft Entra ID security auditor. Attack paths, permissions analysis, Conditional Access gaps, PIM misconfigurations, account hygiene. Score /100 with step-by-step remediation.

  • 14 collectors (Microsoft Graph API + LDAP)
  • Neo4j attack graph with Cypher queries
  • PDF / HTML / JSON reports with MITRE mapping
Get started →
Ravenscan

Ravenscan

Network and web security scanner. Ports, services, CVEs (CISA KEV), protocol audits (SSH, TLS, SMB, RDP, LDAP, K8s, Docker), SQLi/XSS detection. Single Go binary.

  • 13 audit modules, 65+ finding types
  • Embedded CVE database and CISA KEV list
  • Attack path analysis and compliance mapping
Get started →
RedFox Bastion

RedFox Bastion

Zero Trust access platform — browser-based SSH, RDP, VNC, database proxy and Application Access (ZTNA). Entra ID authentication (OIDC/SAML), RBAC, session recording, WORM audit logs, credential vault and password rotation.

  • SSH in the browser (no VPN, no client)
  • RBAC & Entra ID OIDC authentication
  • Immutable WORM audit trail (SOC 2, ISO 27001)
Learn more →

Data flow & privacy

  • Scan data (findings, reports, targets) never leaves your infrastructure
  • EntraGuard contacts only graph.microsoft.com, login.microsoftonline.com and license.coderaft.io
  • Ravenscan contacts only license.coderaft.io — everything else is offline
  • RedFox Bastion contacts login.microsoftonline.com (OIDC) and license.coderaft.io
  • No telemetry, no analytics, no beacons
  • Licence cache encrypted locally (AES-256-GCM, 48h TTL); licence signed RSA-4096

Prerequisites

  • Docker 24+ and Docker Compose v2+ — all products run from a single docker-compose.yml
  • 4 GB RAM minimum (8 GB recommended) — all products share PostgreSQL, Neo4j and Redis
  • A CodeRaft licence key — free 14-day trial

Quick install

One command to deploy the CodeRaft Dashboard. Activate your licence in the dashboard to deploy your products.

Linux / macOS

curl -fsSL https://install.coderaft.io | bash

Windows (PowerShell)

irm https://install.coderaft.io/win | iex

Open http://localhost:3000 after install. The Setup Wizard handles the rest.