← All Builds DAY 6 OF 30

CyberSavIQ

Cyber Security / MSP — Personal & Reputation Layer · Next.js 14 · AWS App Runner · DynamoDB · Claude Sonnet 4.5 + Haiku 4.5 via Bedrock · OSINT collectors · Docker MCP server · Cognito · Stripe · 65h build
LIVE https://cybersaviq.com

Day 6 of 30

Day 6 of the CyberSavi family arc. CyberSavIQ — cybersaviq.com — is live. Personal and reputation layer of the stack.

The MSP runs the SecureStackScan assessment. CompliancePulse closes the technical gaps continuously. CyberSavi Academy trains the people who walk through the gaps. CyberSavIQ covers the owner — the SMB founder, the family principal, the household-and-business package the MSP sells as one relationship.

What it does

CyberSavIQ produces two coupled artifacts per subject — Internet Dossier and LLM Perception Report — and feeds the resulting risk signal into the MSP’s CompliancePulse evidence package on a per-tenant basis. $4.99 per individual report; bundled into the MSP’s household-and-business retainer for recurring coverage of the owner, the spouse, and any dependents the MSP and the SMB owner agree should be in scope.

Three things make this a real product instead of another data-broker-removal service:

1. Internet Dossier — done thoroughly, not just data-broker scrubbing. OSINT against the open web: data-broker records (the standard 80+ source removal target), public-records traces (court, voter, property), breach exposure via HIBP and adjacents, social-graph artifacts the subject did not realize were inferable, leaked credential pairs, address trails. The dossier is the factual layer — what is verifiably out there.

2. LLM Perception Report — the half nobody else is shipping. We probe the major language models (Claude, GPT, Gemini, plus a configurable set) with controlled prompts about the subject, parse what each model confidently asserts, and flag the gaps between the dossier ground truth and the model output. Stale facts (model says X is at company Y; X left in 2024). Hallucinated associations (model confidently links X to a 2019 securities matter that was someone else with the same name). Real-but-unflattering surfaces (2014 podcast appearance the subject never thought about again). This is what the SMB owner’s customers read about them when they ask their assistant before the call.

3. Couples to CompliancePulse. The dossier and perception signals are not delivered as a standalone PDF. They feed the per-tenant CompliancePulse risk picture as a bidirectional signal — the same evidence package the auditor sees, the same continuous-compliance posture, now with owner-level personal exposure as a first-class control. CompliancePulse routes the personal-risk delta into the MSP’s vCISO dashboard alongside the MFA-failure rate and the external-sharing exception count.

The product is in production, available at $4.99 per report retail, and onboarding new MSP partners under the household-and-business bundle starting today.

Why Day 6

The CyberSavi family week stacks one layer per day: assess, secure egress, run continuous compliance, train. Day 6 is the layer that turns the cluster from technical-control coverage into household-and-business coverage — the layer that makes the SMB-owner relationship sticky.

The channel-motion math is straightforward. SMB cybersecurity isn’t five separate products competing for five separate buyers. It’s one MSP-and-vCISO retainer that needs every layer covered. The owner who renews the retainer because his spouse’s address was scrubbed off three data brokers, his teenager’s leaked credentials were rotated, and his own LLM perception flipped from “associated with the 2018 incident” to a clean read — that’s the renewal that doesn’t churn. CyberSavIQ is the layer that earns that renewal.

The new half — LLM perception — is the part that justifies the launch this week and not next year. Reputation in 2026 is no longer “what does the first page of Google say.” It’s “what does the assistant tell my buyer when she asks.” That’s a different surface, and it’s actively unmonitored at the SMB-owner layer. We are betting that the MSPs who own the relationship are the right channel to address it, and that owner-level coverage couples better to the existing vCISO retainer than to a standalone direct-to-consumer purchase.

The Velocity Process notes

What Claude Code handled: the OSINT collector pipeline (multi-source ingestion + dedupe + normalization), the LLM-perception probe (rate-limited concurrent probing across Claude, GPT, Gemini with controlled prompts and structured output), the report renderer (the report has to look like something the SMB owner shows their spouse, not a security dashboard — that’s a design call but the rendering work is CSS), the MCP server that exposes the per-subject signal to CompliancePulse, the Stripe per-report flow, and the MSP-tenant integration scaffolding.

What required human judgement: the call to ship LLM perception at all (most personal-cyber products won’t touch it because it’s slippery — but it’s the part of the surface that matters now), the decision to keep the retail price at $4.99 even though the recurring MSP bundle is the real ARPU number (single-report buyers are the trial layer; if it costs $49 nobody runs it on themselves), and the choice to make the dossier-versus-perception delta the centerpiece of the report rather than a side panel.

What broke: prompt-injection attacks against the LLM-perception probe. Early versions of the probe got reflected back — data-broker results contained crafted strings that, when concatenated into a prompt for the perception probe, manipulated the model into producing prompts back to the user. Hardened the probe in two ways: (a) a sanitizer that strips prompt-injection-shaped content from data-broker results before any of it reaches a model, and (b) a structured-output schema on the probe response so the perception output cannot escape into freeform model voice. Worth flagging publicly because every personal-cyber tool that adds an LLM layer is going to hit this and most won’t catch it.

The CyberSavi family arc continues

  • Day 1: SecureStackScan — find the gaps.
  • Day 4: CompliancePulse — close and monitor them continuously.
  • Day 5: CyberSavi Academy — train the people the gaps walk through.
  • Day 6 (today): CyberSavIQ — cover the owner personally; household and business in one report.
  • Day 8: GovernAI — AI governance overlay for the EU AI Act moment.

What’s next this week

  • Day 7 (Thu May 7): Theme essay — EU AI Act 2026, the regulatory tailwind.
  • Day 8 (Fri May 8): GovernAI — closes the CyberSavi family week.

Want to talk

If you run an MSP / vCISO / fractional CISO desk and your offering stops at the firewall — book 30 minutes. CyberSavIQ is in production at cybersaviq.com and onboarding new MSP partners under the household-and-business bundle now.

Live Product →