Long-form docs
7
Slide decks
8
UI concepts
5
Console layouts
4
Live exports
6
API endpoints
30+
01Start here · for the presenter
★ CLIENT DECK · 10 SLIDES (RECOMMENDED FOR CSX)
Client-facing 10-slide deck for the CSX meeting
No specific time commitments. Plain language. The "machine speed vs remediation" opener you wanted. Configurable agents. Six personas. Download as PowerPoint (.pptx), save as PDF (P), or present from the browser with arrow keys. Pair with the demo walk-through script.
/presentation/client-deck.html · /api/deck/client (.pptx)
★ DEMO WALK-THROUGH SCRIPT
Slide-by-slide read-aloud script for the meeting
For every one of the 10 client-deck slides — opener line, talk track in your own voice, anchor phrases to memorize, what to point at on screen, transition to the next slide. Plus a 60-second opening, four most-likely Q&A, and three lines to memorize if you forget everything else.
/presentation/demo-script.html
★ HOW PATCH EXECUTION ACTUALLY WORKS
For your understanding — real vs simulated, drivers, POC scope
Honest breakdown of how Mythal executes a patch end-to-end: from CVE arrival through policy gate, approval, maintenance window, driver dispatch (Tanium/SCCM/Ansible/Catalyst/Panorama), rescan, evidence. What's real today, what's simulated, what gets wired during a POC. Includes the verbatim answer to "is this real?" and realistic POC scoping.
/presentation/execution-explained.html
★ SCENARIOS EXPLAINED · FOR THE DEMO
Make me understand the simulations — every scenario explained
What each "Run scenario" button actually does in plain English. What CVE drops. What PSIRT/advisory is involved. What "persist" means. Where to point in the console after clicking. What to say to the audience. Includes a glossary (CVE / PSIRT / advisory / finding / plan / persist / drive) and the Qualys QID-to-CVE mapping explained.
/presentation/scenarios-explained.html
★ WHERE CVEs COME FROM · FOR YOUR UNDERSTANDING
CVE / NVD / PSIRT / Qualys / NVD / KEV — clarified end-to-end
The clearest explanation of the vulnerability lifecycle — from researcher discovery, through MITRE CVE assignment, through vendor embargo + PSIRT bulletin, through NVD enrichment + CISA KEV, through scanner detection rule + your scan, to Mythal's Scanner Liaison ingesting the finding. Includes a worked example for CVE-2023-20198, direct answers to the questions you asked, and the line to say when CSX asks "where do CVEs come from?"
/presentation/cve-sources-explained.html
★ IO HUB PREDICTIVE ANALYTICS — EXPLANATORY GUIDE
Explanatory guide · uploaded reference document
Long-form explanatory guide added to the library. Self-contained styled document with dark / light mode and full sidebar navigation. Use this as a deep reference alongside the demo prep + scenarios docs.
/presentation/guide.html
★ IO HUB — TECHNICAL WHITE PAPER
Technical white paper · architecture & engineering reference
In-depth technical companion to the explanatory guide. Same dark-mode sidebar style. Use this when the audience wants implementation depth — architecture, data model, message bus, policy gate, driver pattern.
/presentation/technical.html
★ IO HUB — PROBLEM & SOURCE (COMPLETE PICTURE)
Executive overview · the problem we solve and where the data comes from
Companion to the guide and technical white paper. Kindle-paper styling. Pitches the problem first, then the data sources, then the closed-loop solution. Best opener for stakeholders who want the "why" before the "how."
/presentation/overview.html
PITCH DECK · 12-SLIDE INVESTOR VERSION
Original investor / leadership deck (more detail)
12-slide version with deeper architecture detail, ROI table, and competitive positioning. Use this when the audience is technical or financial. The 10-slide client-deck above is better for CSX product meetings.
/presentation/pitch-deck.html · /api/deck/export (.pptx)
★ CSX DEMO PREP · NEW
Pitch deck + demo script + preflight checklist
The complete pre-meeting package. 12 pitch slides with talking points, three demo scripts (4 / 12 / 20 min), preflight checklist with persistent checkboxes, Q&A prep with 12 likely objections, critical URLs, and "if something breaks" recovery playbook.
/presentation/demo-prep.html
CONCEPTS PRIMER
How vulnerability management actually works
High-level explainer of CVEs, CISA KEV, the Mythos thesis, who provides fixes, the org workflow. From-zero, no prior cybersec knowledge assumed. 12 sections with sticky TOC.
/presentation/concepts.html
PRIMER · DEEP
Primer for AI engineers
Long-form onboarding for someone who builds with LLMs but is new to cybersec ops. 10 sections covering domain + all 12 agents + the glue layer + how to talk in the room.
/presentation/primer.html
USER GUIDE
Every screen, every feature
Walkthrough of the live console — every page, every button, every workflow. Plus troubleshooting + REST API cheatsheet.
/presentation/user-guide.html
GLOSSARY
Every term, A–Z
60+ cybersecurity / OT / compliance terms defined alphabetically with cross-references. Open in a second tab while reading the Primer.
/presentation/glossary.html
NAVIGATE
How to present
Keyboard shortcuts · recommended flow through pages · audience routing · failure-mode recovery.
/presentation/navigate.html
CLIENT POSITIONING
Mythal — the response, in their language
Internal 12-slide deck. Decodes a real client inquiry, maps their 4-step workflow onto the 12 agents, lands the 3 winning claims, structures the reply.
/presentation/mythal.html
02Slide decks
DECK A · 12 SLIDES
The Brief
Executive editorial · McKinsey/BCG cadence. For VPs and directors who want the strategic picture. Numbered chapters · pull quotes · big-number tiles.
/presentation/brief.html
DECK B · 14 SLIDES
The Manual
Technical field manual for engineering leaders. "Looking inside one agent" · annotated diagrams · pilot architecture sketch.
/presentation/manual.html
PITCH · ORIGINAL
Client pitch deck
The original 8-slide pitch — for CISO / VP / CFO leave-behind. One-sentence pitch, Mythos thesis, ROI, the ask.
/presentation/pitch.html
IN-ROOM RUNBOOK
Demo scripts
4-minute investor cut + 12-minute CISO technical cut. Timed beats and exact buttons to click during the demo.
/presentation/demo.html
REFERENCE
The 12 agents
Role, contract, failure modes for every agent. The Supervisor FSM. The OT Safety Officer veto path. The 3 reasoning backends.
/presentation/agents.html
DIFFERENTIATOR
Inventory Insights — the 12th agent
Beyond CVE flow. Surfaces EOL software, version sprawl, shadow IT, CCS-without-owner, identity hygiene — proactive, before any advisory drops.
/presentation/inventory.html
SYSTEM
Architecture overview
Topology · agent message envelope · 7 policy-gate rules · the signed reasoning-trace ledger · prompt-injection defense.
/presentation/architecture.html
AUDIT-GRADE
Compliance mappings
Control-by-control coverage of TSA SD 1580-21-01, NIST CSF 2.0, NIST 800-82r3, IEC 62443, SOX, HIPAA, PCI DSS v4.
/presentation/compliance.html
03UI concept mockups
PORTAL
5 UI concepts · comparison
Side-by-side thumbnails of all five layout concepts with a comparison table.
/presentation/ui-concepts/
CONCEPT 01
Mission Control
Bloomberg Terminal · Datadog lineage. 5-zone HUD with scrolling CVE ticker. Maximum info density.
/presentation/ui-concepts/concept-1-mission-control.html
CONCEPT 02
Workspace
Linear · Vercel · Stripe lineage. Single-column workspace · command palette · electric-purple accent.
/presentation/ui-concepts/concept-2-workspace.html
CONCEPT 03
Lightning Console
Salesforce Lightning lineage. 4-pane split-pane: utility / filter / list / detail.
/presentation/ui-concepts/concept-3-lightning.html
CONCEPT 04
Studio
Figma · Notion lineage. Tool rail · layers panel · canvas · inspector. Composable workspace.
/presentation/ui-concepts/concept-4-studio.html
CONCEPT 05
Command Bridge
NASA · Anduril Lattice lineage. Classification banners · HUD · rotating radar · concentric IT-DMZ-OT estate graph.
/presentation/ui-concepts/concept-5-bridge.html
04Live console layouts
DEFAULT
Sidebar console
The original navigation experience with sidebar + section links + topbar. All 10 sections via the left sidebar.
/command-center
LAYOUT M
Mission Control
Multi-panel HUD console. Top-bar pill switches all 9 sections. Live CVE ticker at the bottom.
/mission
LAYOUT W
Workspace
Minimalist single-column with right rail. Breadcrumb section nav. Quick actions in the rail.
/workspace
LAYOUT L
Lightning Console
4-pane Salesforce-style split. Click a row → detail pane updates. Vertical app rail navigates sections.
/lightning
LAYOUT B
Command Bridge
NASA-style HUD with classification banners. Concentric estate radar. Section pill in the center HUD.
/bridge
LIVE FEEDS
Sync CISA KEV → agents
The demo button page. One click → pulls the live CISA KEV catalog, matches against the inventory, drives findings through the 12 agents.
/live-feeds
05Live exports
.PPTX
Leadership deck
12-slide PowerPoint pulled live from the deployed tenant numbers. CSX-themed. Auditor-grade with the SIMULATED watermark on demo tenants.
/api/deck/export
PDF
TSA SD 1580-21-01 evidence
Rail cybersecurity directive · §3.A through §4 with reasoning-trace excerpts. Auditor-ready.
/api/compliance/export?framework=TSA_SD_1580
PDF
NIST CSF 2.0 evidence
Identify · Protect · Detect · Respond · Recover. Evidence under RS.MI-01 and RC.RP-01.
/api/compliance/export?framework=NIST_CSF_2
PDF
NIST 800-82r3 evidence
ICS security · §5.1 risk · §5.4 zones & conduits · §6.2 patch management. OT Safety Officer veto records.
/api/compliance/export?framework=NIST_800_82
PDF
IEC 62443 evidence
Parts 2-1, 2-3, 2-4, 3-2, 3-3. Industrial automation & control system standard.
/api/compliance/export?framework=IEC_62443
.CSV
Inventory CSV
4,310-row asset inventory. Columns: hostname · IPs · OS · env · zone · criticality · is_ccs · vendor · product · version · owner · tags.
/api/estate/export.csv
06API + developer references
OPENAPI
API explorer (Swagger UI)
All 30+ endpoints with interactive request/response. Try the KEV sync, scenario runs, exports right from the browser.
/api-docs
REDOC
API reference (ReDoc)
Alternative reference rendering of the same OpenAPI schema. Cleaner for reading.
/redoc
JSON SCHEMA
OpenAPI JSON
Raw OpenAPI 3.1 schema. Drop into Postman, Insomnia, or any code-gen tool.
/openapi.json
HEALTH
Health check
Liveness probe used by Azure Container Apps. Returns 200 if the FastAPI process and Postgres connection are healthy.
/health
KPIs
Tenant KPIs · JSON
Open critical · KEV-listed · OT under compensating control · patches 24h · MTR · assets total · compliance posture per framework.
/api/kpis
⚡ EXECUTE
Trigger CISA KEV sync
One-click: pulls live CISA KEV, matches against inventory, drives findings through 12 agents. Toast confirms result.
POST /api/feeds/kev/sync
07About this library
WHERE THIS LIVES
All paths under
/presentation/
Every HTML document in this library is bundled into the API container image (under docs/html/) and served as static files from the API at /presentation/. Survives container restarts. Click the back button on any doc to return to the parent portal.
THEMES + DARK MODE
Every doc respects the toggle
Set theme (CSX / Salesforce / Aurora / Quantum) and mode (light / dark) once in the console — every doc in this library inherits via shared
localStorage keys.