PolicyProbe

PolicyProbe is a web app (with an optional lightweight desktop/CLI agent) that reviews proposed firewall and network security policy changes before they are deployed. It ingests diffs from common platforms (Palo Alto, Fortinet, Cisco ASA/FTD, Check Point) via API/export, normalizes rules, and runs deterministic checks plus AI-assisted explanations. The MVP focuses on catching the boring, costly mistakes: overly broad ANY/ANY rules, shadowed/duplicate rules, risky service exposure, missing logging, and changes that violate your own baseline. It generates a human-readable “risk report” tied to the exact rule lines, suggests safer alternatives (narrow CIDRs, specific ports, time-bound rules), and produces an approval checklist for change management. This is not a full-blown SIEM or SOAR; it’s a pre-deployment guardrail that reduces outages and security incidents caused by misconfigurations.