Investor Relations

The Infrastructure Layer
for Automated Threat Defense

SATIS is building the real-time threat intelligence network that small and mid-size operators have been priced out of. We distribute threats across a permissioned blockchain and enforce BGP blackhole routes automatically — in under 30 seconds, at 1/30th the cost of enterprise alternatives.

Status: Revenue-ready product, live in production. U.S. provisional patent filed (March 2026). Seeking strategic partners and accredited investors.

Active Threats
BGP Routes
Countries
5
Network Nodes
<30s
Enforcement Time
AS23026
Own AS Number

Market Opportunity

$15.6B threat intelligence market, growing 20%+ annually. The bottom 95% of operators are underserved.

The Gap in the Market

CrowdStrike, Recorded Future, and Palo Alto sell threat intelligence for $100,000–$500,000/year. That prices out the vast majority of network operators, MSPs, and mid-market enterprises.

Meanwhile, 40,000 managed service providers and 3,000+ ISPs with their own AS numbers need automated threat defense but have no affordable option that operates at the network layer.

SATIS fills that gap: automated, network-level threat enforcement at $299–$999/month — 30x cheaper, with BGP-level blocking that host-based solutions can't match.

Revenue Projections
Year Pro Customers Enterprise ARR
Year 1505$275K
Year 220030$1.2M
Year 360080$3.5M
Year 41,200200$7.6M
Year 52,500500$16.8M

Assumes 10% annual churn, 85%+ gross margin. Infrastructure cost scales sub-linearly (blockchain is shared, each peer adds ~$5/mo).

What's Built & Running
  • Permissioned MultiChain blockchain — 5 nodes, 7,000+ blocks, 12,000+ threats processed
  • 3,000+ active BGP blackhole routes announced via BIRD 2 (AS64999)
  • Automated nftables enforcement on every node in under 30 seconds
  • WireGuard encrypted mesh with IPv6 native (own /64 allocation)
  • 6 threat feed sources: fail2ban, AbuseIPDB, Spamhaus DROP, Blocklist.de
  • Customer portal: self-service signup, API keys, BGP peering, severity control
  • Multi-OS peering configs: OpenBSD, Linux/BIRD, Linux/FRR, Cisco, Juniper
  • Full REST API with SSE streaming, 15 website pages, channel partner program
  • Automated PDF threat intelligence reports — daily, weekly, and custom date range with executive summaries, ASN analysis, geographic distribution, and severity breakdowns
  • Stripe billing integration, Terms of Service, GDPR-ready privacy policy
  • U.S. provisional patent filed (March 2026) — 20 claims covering blockchain threat distribution, BGP blackhole enforcement, consumer appliance, and portal-based self-service enrollment
  • Architecture aligned with NIST CSF, CISA BOD 22-01 (known exploited vulnerabilities), and FIPS 140-2 cryptographic standards (WireGuard, PBKDF2-SHA256)
Competitive Moats
  • Own AS number (AS23026) — can peer directly at the BGP level, most competitors can't
  • Network effects — every customer running fail2ban contributes threats back; more nodes = better data
  • High switching cost — BGP integration into routing infrastructure is sticky; customers don't churn lightly
  • Near-zero marginal cost — blockchain and feeds are shared; each new customer costs ~$5/mo
  • Immutable audit trail — blockchain ledger provides compliance-grade evidence of threat detection and response
  • Open standards — built entirely on nftables, BIRD 2, WireGuard, FastAPI; no vendor lock-in
  • Price disruption — 30x cheaper than enterprise alternatives while operating at a layer they can't (BGP)
  • Compliance-ready architecture — immutable blockchain audit trail satisfies NIST CSF, SOC 2, and CISA reporting requirements out of the box
  • Patent-pending IP — 20-claim provisional patent covering the blockchain + BGP enforcement architecture; defensible against replication by larger competitors
The Flywheel
1
Operators join for the BGP blackhole feed

Free protection from 3,000+ known malicious IPs, updated in real-time.

2
They deploy fail2ban integration (2-minute setup)

Their local bans flow back into the network, enriching the global threat feed.

3
More sensors = better data = more value

1,000 customers means 1,000 fail2ban sensors across 73+ countries. The feed becomes indispensable.

4
Indispensable feed drives upgrades and referrals

Community users upgrade for BGP peering. Operators recommend to peers. Growth compounds.

Enterprise-Grade Compliance & Reporting

Automated PDF intelligence reports, immutable audit trails, and regulatory alignment — built in from day one.

Threat Intelligence Report
SATIS Weekly Summary
Feb 21 – Feb 28, 2026
7,432
Threats Detected
73
Countries
3,005
BGP Routes
<30s
Avg Response
Critical High Medium/Low
Includes: ASN Analysis • Geographic Distribution • Abuse Contacts • Pie Charts
Automated Intelligence Reports

Every customer gets personalized PDF threat intelligence reports — generated on-demand from live blockchain data. Daily, weekly, or custom date range.

  • Executive summary with key metrics and trend analysis
  • Top offending ASNs with abuse contact information
  • Geographic threat distribution with country breakdowns
  • Severity, category, and source distribution pie charts
  • Personalized with customer name and company branding
Regulatory Alignment
  • NIST Cybersecurity Framework (CSF) — detect, respond, and recover controls built into the pipeline
  • CISA BOD 22-01 — automated response to known exploited vulnerabilities
  • FIPS 140-2 cryptography — WireGuard (ChaCha20-Poly1305), PBKDF2-SHA256 (600k iterations)
  • SOC 2 Type II ready — immutable blockchain audit trail provides evidence of every threat detection and enforcement action
  • GDPR compliant — data export, deletion rights, no tracking cookies, minimal data collection
90%+
Gross Margin

Infrastructure shared across all customers. No per-seat licensing.

~$5
Marginal Cost / Customer

A WireGuard peer + BGP session. Blockchain and feeds are shared.

$200
Monthly Infra Cost (Today)

4 VMs + 1 VPS. Full blockchain, BGP, API, website. Profitable from customer #1.

Leadership

Jonathan Kalbfeld, Founder & CEO — Network operator and cybersecurity engineer with 20+ years in Linux infrastructure, BGP routing, and security operations. Operates AS23026 with native IPv6. Background in security infrastructure at scale across enterprise and service provider environments.

SATIS was born from a real operational problem: when one server gets attacked, why does every other server have to wait hours to learn about it? The answer should be seconds, and it should happen at the network layer automatically. The entire platform — from blockchain to BGP peering to compliance reporting — was built to production in under 30 days, demonstrating extreme capital efficiency and deep domain expertise.

Accredited Investor Inquiry

Available for qualified investors. Schedule a call or request our data room.

This page is for informational purposes only and does not constitute an offer to sell or a solicitation of an offer to buy any securities. Securities offerings, if any, will only be made to accredited investors pursuant to applicable exemptions under the Securities Act of 1933. Any investment involves substantial risk, including the possible loss of your entire investment. Past performance and projections are not indicative of future results.

© 2026 Setec Astronomy, Inc. All rights reserved. • Terms of Service