About — Obexum

The story

Obexum started in 2026 as an internal tool. We were running pericial AD audits for clients and noticed the same pattern over and over: every commercial scanner emitted dozens of "informational" findings on a clean forest, every report was a 200-page wall of CVE noise, and the actual adversary primitives (ESC1-15, ACL backdoors, Kerberos abuse) lived in separate playbooks, separate tools, separate vendors.

We wrote a Go binary that codified the checks we ran by hand, with one hard rule: zero false positives in a clean state, or the check does not ship. Every probe had to pass a pericial round-trip — inject the misconfiguration, detect it, remediate it, re-scan clean — before it earned its rule_id.

Five months and 569 checks later, we shipped Obexum publicly. The lab DC at obxlab.local still runs every release. Every commit references the engagement evidence. Every check has a story.

What "pericial-grade" means

Pericial is what Spanish-speaking auditors call expert-witness forensic work — the kind that holds up in a courtroom. For us it translates to:

Reproducibility. Same target, same answer, every time. No LLM, no fuzzy matching.
Evidence preservation. Raw probe output is in the engagement directory. We do not summarise away the truth.
Defensible severity. CRITICAL means a documented adversary primitive is open. HIGH means the same primitive plus operator-controllable mitigation. We do not inflate.
Round-trip validation. Every check is provably bidirectional — it fires when the misconfiguration is present, and stops firing when it is removed.

What we believe

The wall, not the alarm. Defence in depth needs an audit at the foundation. We are not your EDR.
Operators, not dashboards. A CLI you can pipe into jq beats a SaaS tab you have to click through every morning.
Open evidence. Every check is reviewable. Every fix is auditable. No black-box scoring.
Zero false positives is a contract. Not an aspiration.

Want to talk?

We are a small team. We answer email personally. Get in touch.