SegmSketch

SegmSketch is a web app (with optional desktop agent) for security architects to design and validate network and cloud segmentation before anything gets built. You draw zones, subnets, VPCs/VNETs, identity boundaries, and critical workloads, then define allowed flows and security controls. The app runs automated checks against common segmentation failure modes (overly broad east-west access, shared services blast radius, missing egress controls, weak admin paths) and generates a concise “segmentation bill of materials” you can hand to network/cloud teams. It exports enforceable artifacts like firewall rule templates, cloud security group matrices, and architecture decision records (ADRs). It’s a combination traditional + AI app: AI helps translate messy requirements and existing diagrams into structured zones/flows, but the core value is deterministic validation and exportable outputs. It won’t replace senior architects; it reduces rework and prevents obvious mistakes.