We build network security
for organizations that prefer not to outsource trust.
Paloryx Labs builds privacy-first network security products for healthcare, legal, defense contracting, financial services, education, and other organizations where data sovereignty isn't a marketing word — it's a regulatory, contractual, or principled requirement. Our products run entirely on your network. We never see your queries, your devices, or your detection signals.
Privacy by architecture, not by promise
Most security vendors say they won't use your data. We say we never see it. The difference matters when an auditor, regulator, or insurance carrier asks.
Detection runs in the binary
The threat-scoring stack — three layers plus behavioral analysis — ships embedded in the resolver. Detection doesn't depend on a SaaS uplink, a feed subscription, or a vendor relationship that could be acquired or sunset.
Substantive over slogans
We'll happily show you the threat-bank construction, the embedding pipeline, the audit-log schema. Security buyers parse marketing-speak skeptically; we don't use it.
Documentation over magic
Every detection event explains itself in plain language: which signal fired, what category, what reference matched. Compliance officers shouldn't need a forensics engineer to answer “why was this blocked.”
What we're working on
Paloryx Resolver is our DNS-layer threat-detection product. Detection ships embedded; reference banks update via a daily cloud delta. Platform support details confirmed during sales conversation.
Paloryx Observer is our network detection and response (NDR) capability, built on the same architectural foundation — on-device, no commercial feed subscription. More on that when we're ready to talk about it publicly.
Talk to us
We're especially interested in conversations with security teams who've evaluated cloud-based DNS filters and decided they don't fit. If that's you, please reach out.
Get in touch