ChiRi Studio
    Booting local-first edge security…
    HQ-Lite Alpha Core

    Local-first defensive edge security for smaller organisations.

    ChiRi Studio builds HQ-Lite, a live-tested defensive edge appliance that sits close to the network, gives operators local visibility, and supports explainable frontline decisions without mandatory cloud dependency.

    network-first agentless core visibility offline-capable explainable decisions
    Explore HQ-Lite Pitch deck (PDF)
    Product

    HQ-Lite is a defensive edge appliance, not just another dashboard.

    HQ-Lite sits inline between WAN and LAN. It is designed to help smaller organisations see what is happening at the edge, understand device-level context, review IOC activity, and support controlled defensive action when policy and operating mode allow it.

    35 daysand 20 minutes live edge operation
    14.79 kWhtotal energy used
    ~17.6 Waverage power draw
    Alpha Corefunctionally complete

    Local-first

    Core decisioning and response happen at the edge, without mandatory cloud dependency for local defensive operation.

    Network-first

    No endpoint agents are required for core edge visibility. HQ-Lite works from the network position.

    Controlled response

    Observe-first by default. Armed mode must be validated, auditable and deliberate before active enforcement.

    Guardian

    Frontline decision and response engine.

    Guardian is evolving from “system reacts” into “system explains, records and supports controlled action.” The live-test lesson was clear: defensive automation is not enough. If a system flags or blocks something, the administrator needs to understand why.

    Observe

    Traffic, IOC, DNS/IP events and device context.

    Score

    Risk bands, severity, adaptive thresholds and scoring logic.

    Explain

    Why flagged, which layer, which device and what evidence.

    Decide

    observe, would_block, blocked, allowed or false_positive.

    Act / record

    nftables/XDP path in armed mode, with event trail.

    Operator trust matters. HQ-Lite is being shaped around explainable records: event reason, layer, device, severity, score and decision state.
    Alpha Core modules

    The core feature set is closed. Now we harden what exists.

    No new core features are being added now. The focus is making the existing system safer, clearer, more stable and ready for real pilot environments.

    Guardian

    Observe, score, explain and decide. Armed-mode validation is the next important step.

    IOC Layer

    DNS/URL/IP intelligence, protected domains, false-positive controls and observe history.

    XDP Edge

    eBPF visibility and enforcement path for high-speed edge decisions when armed and permitted.

    Echo-Probe

    Network map and device intelligence: Tree View, Map View, friendly names, shadow devices, IOC context and per-device traffic.

    Noctilux

    System health, temperature, resource usage, process visibility and operational status.

    Admin UX

    Users, roles, sessions, DHCP, firewall controls, safer dashboard workflows and operator visibility.

    Operator-first visibility

    Built so admins can see what matters.

    HQ-Lite is designed so an administrator can understand the network without dropping straight into the shell. Echo-Probe explains the LAN. IOC shows observe-first intelligence. Noctilux shows health. Guardian records security decisions.

    Echo-Probe network map

    Device discovery, online/offline lifecycle, friendly names, parent assignment, shadow nodes, Tree View, Map View, Device Details, last IOC tickets and per-device traffic.

    IOC observe history

    DNS/URL/IP policy state, protected domains, runtime checks and event records that support review before enforcement.

    XDP / nftables path

    High-performance edge visibility and a controlled enforcement path when armed mode is validated and enabled.

    Noctilux health view

    CPU, RAM, disk, temperatures, processes and operational health for long-running appliance behaviour.

    Where HQ-Lite can fit

    Local edge visibility is not limited to one sector.

    SMEs

    Practical security visibility without building an internal SOC.

    MSPs

    A repeatable edge appliance model for customer environments.

    Hospitality

    Guest Wi-Fi, IoT, POS/back-office separation and uptime pressure.

    Education & community

    Low-power local visibility for constrained environments.

    Branch sites

    Edge decisioning close to remote users and devices.

    Hosting / VPS edge

    Traffic pressure, abuse visibility and controlled mitigation paths.

    Current traction: technical validation and live-test proof. Next step: structured pilots with aligned organisations or MSP-style partners.
    Roadmap

    From live-tested alpha to pilot readiness.

    Now

    Alpha Core functionally complete. Core feature expansion is paused.

    Next

    Hardening, optimisation, documentation, UX refinement and operational cleanup.

    Then

    Guardian RTS audit, IOC workflow refinement, Settings, Watchdog/self-healing and armed-mode validation.

    ISO

    Prepare the first full ISO and repeatable installation path for structured validation.

    Pilots

    Structured pilot environments and beta-readiness with aligned organisations.

    Future

    Ecosystem expansion only after HQ-Lite is stable, hardened and validated.

    About ChiRi Studio

    Founder-led, UK-based, built from practical engineering on real hardware.

    Piotr Danielewicz — Co-founder & CTO

    Security, networking, Linux systems, architecture, Guardian, edge infrastructure and live technical validation.

    Kinga Danielewicz — Co-founder & CEO

    Product vision, UI/UX, design direction, operations, communication and founder-led product clarity.

    Contact

    Practical conversations welcome.

    We are open to serious technical, pilot and partner conversations around HQ-Lite, edge security, low-power appliance routes and pilot validation.

    Email: [email protected] Download pitch deck LinkedIn: ChiRi Studio LinkedIn: Piotr LinkedIn: Kinga