poisettx

Features

A complete platform that covers the entire tabletop exercise lifecycle — from context analysis to compliance reporting.

AI-Generated Simulation Scripts

Generate complete tabletop exercise scripts, including roles, timeline, injects, and the incident's ground truth, in minutes instead of weeks. Every scenario is grounded in your own policy documents and organization profile: industry, revenue, systems, and regulatory frameworks.

  • Select which policy documents serve as ground truth per simulation
  • Scenario types from ransomware to insider threat, in English or Dutch
  • Realistic injects that escalate in severity over the timeline
  • Financial figures calibrated to your organization's size and revenue
  • Editable scripts with recorded document provenance, ready to review before execution
Generate simulation

Scenario type

Ransomware Attack

Ground truth

Information Security Policyfinal
Incident Response Planfinal
Generate simulation

Policy Documents as Ground Truth

Generate your Information Security Policy, Business Continuity Plan, Incident Response Plan, and Disaster Recovery Plan step-by-step, or upload the ones you have. Simulations are designed against them, so every exercise also reveals the gaps in your plans.

  • Guided AI generation for ISP, BCP, IRP, and DRP
  • Upload existing documents (PDF, Word, Excel, PowerPoint)
  • Version management with full edit history
  • Per-simulation document selection with recorded provenance
  • Exercises stress-test your plans and expose what's missing
Documents
final

ISP

final

BCP

draft

IRP

final

DRP

Digital War Room

Execute exercises in a purpose-built real-time environment. A shared group chat where all participants, human and AI, collaborate, plus private DMs and a facilitator channel, just like your real tools during a real incident.

  • Real-time group chat with threaded replies and file attachments
  • Private 1-on-1 DMs and a facilitator channel for spoiler-free hints
  • Automated inject distribution at scheduled timeline moments
  • Support for remote, on-site, or hybrid participation
  • Full session logging and transcript for post-exercise analysis
War room · Live session
inject · critical

Unusual encryption activity detected on file servers.

SOC ManagerAI agent

Isolating affected servers. IT Manager, backup status?

Type a message…Send

Adaptive Injects

Flip one switch and the exercise writes itself live. In adaptive mode, every inject is generated during the session — reacting to what your team says, decides, or ignores — while the scenario's beat plan keeps timing, severity, and coverage exactly on track. Nobody reads the script in advance. Not even you.

  • Injects written live as the exercise unfolds, on top of your scenario and documents
  • The outside world reacts: journalists quote your statements, attackers mock your mitigations
  • The beat plan stays in charge — timing, severity, and targets never derail
  • The scripted inject stands by as instant fallback, so the exercise never stalls
  • A surprise for everyone, including the organizer — repeat runs stay fresh
War room · Adaptive injects
Communications Lead

Statement is out: “systems stable, no customer data affected.”

inject · highwritten live

Eva Smit (journalist): “You say no customer data — then why is a sample being offered on a leak forum right now?”

T+35m · sealed — written when it fires

In-Character AI Teammates

Can't fill every role? AI agents play them like real colleagues: they respond to injects, coordinate with each other, share evidence such as log files, drafted emails, and breaking news, and actively involve the human players in every key decision.

  • In-character responses grounded in the scenario's fixed facts
  • Agents share real artifacts: log exports, emails, social posts, news articles
  • Autonomous progress when the room goes quiet: they push the incident forward
  • Deliberately involve human participants in decisions their role owns
  • No more postponed exercises due to availability issues
War room · AI teammates
CISOAI agent

Pulled the auth logs from the jump host, three failed admin logins right before the encryption started. See attached.

auth-server-export.loggenerated
Communications LeadAI agent

Press is calling. Drafted a holding statement, IT Manager can you approve before it goes out?

Waiting on you…

Automatic Debriefing & Reporting

Every session is fully logged, enabling automatic generation of comprehensive debriefing reports. Get per-role compliance and competency scores, response times, and missed steps, ready for compliance documentation.

  • Procedure compliance scoring against your IRP, per role
  • Competency rubric: decision-making, communication, procedure adherence, coordination
  • Response time analysis per role on critical injects
  • Full transcript of every channel, exportable as PDF
  • NIS2-ready reports for audit documentation
Session debrief

Procedure compliance

Audit-ready
IT Manager (you)74
SOC Manager81
CISO68

Response times · missed steps · full transcript · PDF export

Personal Readiness Tracking

Every team member tracks their own performance across exercises: skill trends, scores per scenario type, and an AI coach that distills it into one measurable focus for the next session. Admins see the whole team's readiness at a glance.

  • Score and skill trends across exercises, per competency
  • Breakdown per scenario type: see where you're strong and where you're not
  • AI coaching review: strengths, growth areas, and one measurable next focus
  • Focus targets verified in the next exercise: goals you can actually hit
  • Team readiness view for admins with per-member drill-down
My readiness

Focus for the next exercise

Confirm backup integrity before authorizing recovery

Target: Procedure adherence ≥ 80

Decision-making74
Communication82
Procedure adherence61

Ready to transform your incident readiness?

Run your first exercise this week — plans from €99 per month.