CTI, OSINT, phishing simulation — integrated offensive and defensive tools for a proactive security posture.
Galea includes a CTI engine that automatically correlates emerging threats with your declared assets. You are alerted in real time when a vulnerability or attack campaign directly concerns you.
New CVEs are automatically correlated with the applications declared in your inventory. Alerted only if you are affected.
Detection of leaked credentials, mentions of your company on underground forums, alerts on paste sites.
Integration of standardised Threat Intelligence feeds: CERT-FR, AlienVault OTX, MISP. Indicators of Compromise (IoCs) correlated with your assets.
Monthly summary of threats relevant to your industry. Trends, active campaigns, tailored recommendations.
Galea's automated OSINT (Open Source Intelligence) continuously scans your Internet exposure. Forgotten subdomains, open services, credentials in data leaks — everything an attacker would find during reconnaissance.
Automatic discovery of all your subdomains, open ports and services exposed on the Internet.
Monitoring of breach databases. Alert if emails @yourdomain appear in a leak.
Monitoring of underground forums, paste sites and Telegram channels to detect mentions of your organisation.
Overall rating of your digital exposure, with monthly trend and industry comparison.
Test your employees' vigilance with realistic phishing campaigns. The results are integrated directly into your Galea risk register.
Microsoft 365, DHL, LinkedIn, HR notifications, password resets. Templates adapted to the European market.
Open, click and submission rates. Individual and collective progress over 12 months with industry benchmarks.
Employees who click immediately receive a micro-training module. Built-in gamification and progress tracking.
Phishia results feed the "awareness" risk in your Galea register. Risk score updated automatically.
Executive report with summary, detailed statistics, recommendations and cross-campaign evolution. Ready for your executive committee.
Import your directory via CSV or connect Azure AD / Google Workspace. Pre-configured groups and teams.
Phishia is available as a Galea module (+€300/month) or standalone at phishia.fr
The supply chain is the weakest link in cybersecurity. NIS2 explicitly requires third-party risk management. Galea automates the assessment and monitoring of your critical subcontractors.
Automatic dispatch of ISO 27001 / NIS2 questionnaires to your suppliers. Scheduled reminders, automatic scoring of responses.
Risk score per supplier (A to E). Classification by criticality: strategic, important, standard.
Alerts when one of your suppliers is involved in a security incident. Correlation with CTI feeds.
Documentation of your third-party risk management, ready for NIS2 audits and ISO 27001 certifications.
Insurers increasingly require detailed information on your security posture. Galea automatically generates underwriting files with all the data your broker needs.
Cyber maturity report, security measures in place, remediation plan, incident history — all in one PDF.
After risk treatment, Galea calculates your residual risk. A negotiation argument with your insurer.
Demonstrate to your management the return on investment of each measure: reduction in annual financial exposure vs. cost of the measure.
Dark web, STIX, sector alerts
Digital exposure, leaked credentials
Phishing simulation, awareness
Questionnaires, supplier scoring
Underwriting files, maturity
All modules are included in the Advanced plan. View full pricing →
30-minute demo, no commitment.
Join the companies that trust Galea to drive their cyber-résilience. 30-minute demo.
Already a customer? Go to the platform
