Projects Docs Home

Live Demo Guide

Verify NIS2 compliance controls in real-time. Follow these scenarios to test the resilience of our infrastructure.

Launch Live Demo

Scenario 1: Business Continuity (DoS Protection)

NIS2 Art. 21.2.c

Test the **Rate Limiter** which protects the infrastructure from flooding attacks, ensuring service continuity.

  1. Navigate to the /spam/ endpoint.
  2. Refresh the page rapidly (5-10 times in 5 seconds).
  3. Observe the response change from "Spam Me!" to 429 Too Many Requests.
Demonstrates resilience against Denial of Service attempts.

Scenario 2: Monitoring & Healthchecks

NIS2 Art. 21.2.a

Verify the automated monitoring endpoint used by orchestration systems (Kubernetes/Railway) to ensure availability.

  1. Navigate to /health/.
  2. Verify the JSON response {"status": "ok"}.

Scenario 3: Access Control & Forensics

NIS2 Art. 21.2.i (MFA) & Art. 21.2.f (Logging)

Test the secure login flow which generates forensic logs (HMAC signed) for every access attempt.

Credentials:

  • User: demo
  • Pass: Nis2Demo2024!
  1. Go to /admin/login/.
  2. Log in with the credentials above.
  3. Access the protected area. (Note: In a real deployment, these actions generate signed logs in Fluent Bit/SIEM).

Scenario 4: Infrastructure Hardening

NIS2 Art. 21.2.g (Hygiene)

Inspect the HTTP headers to verify security hardening applied automatically by the middleware.

  1. Open Developer Tools (F12) -> Network tab.
  2. Refresh any page.
  3. Inspect the Response Headers for:
  • X-Content-Type-Options: nosniff
  • X-Frame-Options: DENY
  • Strict-Transport-Security (HSTS)
  • Referrer-Policy: same-origin