Security Operations
Jorissen Consultation Services, LLC

Sign in with your Jorissen Consultation Services Google Workspace account to reach the penetration testing and security operations platform.

Restricted to @jorissenconsult.com accounts

JCS
JORISSEN CONSULTATION
No engagement
Drive
Kill chain
0
Critical Findings
0
High Severity
0
Medium Severity
0
Hosts Scanned
Active Engagement
CLIENT—
SCOPE—
ASSESSOR—
TEAM ROLERED TEAM
DATE—
Operation Phase
✓
Scope
2
Recon
3
Scan
4
Exploit
5
Post-Ex
6
Report
Recent Findings
No scans run yet.
Configure engagement and begin scanning.
Operation Log
JCS-SOP [READY] Security Operations Platform v1.1.0
Jorissen Consultation Services, LLC — Penetration Testing Framework
Aligned: NIST SP 800-115 · PTES · OWASP · MITRE ATT&CK · CVE/NVD
JCS-SOP _
Target Specification
OSINT Modules
WHOIS / ARIN lookup
DNS enumeration (A/MX/TXT/NS/PTR)
Certificate transparency (crt.sh)
Subdomain brute-force
Recon Results
Awaiting recon target…
ARIN / IP Intelligence
IP / FQDNORG / ASNCountryPTRType
No data — run recon above
DNS Records
—
Scan Configuration
Banner grabbing / version detection
OS fingerprinting
NSE vuln scripts
SSL/TLS cipher analysis
Scan Progress
Initializing…
Scan Results
0 CRIT 0 HIGH 0 MED
Awaiting scan…
HostPort/SvcCVESeverityCVSSDescription
No results — start scan above
Red Team Attack Console
⚠ AUTHORIZED USE ONLY — ENGAGEMENT SCOPE ENFORCED
Log all actions to operation record
Attack Output
Red Team console ready.
MITRE ATT&CK Mapping
No attack modules run yet.
Findings
Select an engagement to load findings.
SevTitleHost:PortSourceTechniquesStatus
No findings yet — add one manually, or run a scan/exploit/PCAP to auto-promote results.
Blue-Team Analysis secondary
Blue Team Defense Analysis
Detection Coverage
Network Perimeter82%
Endpoint (EDR)61%
Identity / AD38%
Cloud Workloads24%
Compliance Gaps
Control IDFrameworkStatusGap Description
AC-2NIST 800-53PARTIALAccount mgmt policy incomplete
SI-2NIST 800-53FAILPatch cadence > 30 days
SC-28NIST 800-53FAILData-at-rest encryption absent
AU-12NIST 800-53PARTIALAudit logging gaps on endpoints
IA-5NIST CSFPASSMFA enforced on critical systems
Recommended Mitigations
🔴 Immediate: Implement data-at-rest encryption (SC-28) — AES-256 on all database volumes.
🟠 High: Enforce 14-day patch SLA (SI-2) — deploy WSUS/SCCM automated patching.
🟡 Medium: Complete account lifecycle policy (AC-2) — define offboarding procedures.
Report Generation
JCS Firm Information
Client Information
Include Executive Summary
Include Technical Findings (full)
Include Remediation Roadmap
Map findings to NIST CSF 2.0
Save & Export
Report Preview
JCS
Jorissen Consultation Services, LLC
PENETRATION TEST REPORT
Date: —
CONFIDENTIAL — TLP:RED
Penetration Test Report
Client:—
Contact:—
Assessor:—
Firm:Jorissen Consultation Services, LLC
Scope:—
Team Role:—
Executive Summary
Configure engagement and run scans to populate this report.
Critical Findings Summary
No scan data available.
Remediation Roadmap
Remediation recommendations mapped to NIST CSF 2.0 and CVE data will appear here after scanning.
Future Mitigation Scenarios
Short-term (0–30 days): Apply critical/high patches; enforce MFA on privileged accounts.
Mid-term (30–90 days): Deploy EDR; segment high-risk networks; implement PAW.
Long-term (90+ days): Continuous compliance monitoring; quarterly red team exercises.
NIST CSF 2.0 Alignment
Findings mapped to NIST CSF v2.0: Govern, Identify, Protect, Detect, Respond, and Recover.
Jorissen Consultation Services, LLC · Confidential · For Authorized Recipients Only
Tools
Traffic / PCAP
◉ SIMULATED CAPTURE — interfaces are live via NIC import; packet capture is synthesized for training until the Operator Agent (3s1.4) is connected.
Source Interface Selection
Capture Configuration
ALL HTTP HTTPS/TLS DNS SMB ARP ICMP CLEARTEXT
Promiscuous mode
Monitor mode (802.11 wireless only)
Resolve DNS (reverse PTR on captured IPs)
Deep packet inspection (DPI)
Write to PCAP file on completion
Use as global SRC for all scan operations
Capture Statistics & Triage
IDLE
0Packets
0 BBytes
0 ppsRate
00:00Elapsed
Protocol Distribution
Issue Triage
0
Critical
0
High
0
Medium
0
Info
Top Talkers
No traffic captured.
Live Packet Stream
# Time Source Destination Proto Len Info
Awaiting capture — select an interface and click START CAPTURE
Detected Issues — Auto-flagged
No issues detected yet.
Run a capture to begin DPI analysis.
Traffic Analysis Report
Report Inclusions
Executive summary
Capture statistics + protocol breakdown
All detected issues with packet evidence
Top talkers + conversation pairs
MITRE ATT&CK mapping for findings
Remediation recommendations
Append raw hex dumps for flagged packets
Report Metadata
Save & Export
Merge findings into Master Pentest Report
CVE Intel
CVE Intelligence Feed
SYNCED
NIST CSF 2.0 Best Practices
GOVERN
Cybersecurity risk management strategy, policies, and supply chain risk management.
IDENTIFY
Asset management, risk assessment, improvement planning across organizational contexts.
PROTECT
Identity management, access control, awareness training, data security, platform security.
DETECT
Continuous monitoring, adverse event analysis, detection process improvement.
RESPOND
Incident management, analysis, mitigation, reporting and communication.
RECOVER
Recovery planning, improvements, communications post-incident.
Net Tools
◉ SIMULATED CAPTURE — interfaces are live via NIC import; packet capture is synthesized for training until the Operator Agent (3s1.4) is connected.
Network Utilities
Source interface: — (set in Traffic / PCAP)
Tool Output
Net Tools ready — select a utility above.
MITRE ATT&CK — Enterprise Coverage
Select an engagement to view ATT&CK coverage.
UntouchedExercisedExercised · high/critExercised + blocked
Burp Ingest
🚧
Burp Ingest

Coming in phase 3s1.3. The interface is scaffolded; the working tool ships in that phase.

Operator Agent / Kali
🚧
Operator Agent / Kali

Coming in phase 3s1.4. The interface is scaffolded; the working tool ships in that phase.

New engagement
JCS Assessor Details
Client / Target Details
Import interface snapshot

Paste the full output of ipconfig /all (Windows). The parser extracts adapter name, description, MAC, IPv4 + mask (→ CIDR), IPv6, gateway, DHCP state, and DNS. Interfaces feed the live NIC state; packet capture stays simulated until the Operator Agent (3s1.4) is connected.

Network interface
Available interfaces
New finding