Skip to content
View pethers's full-sized avatar
193 followers · 1.2k following

Achievements

Achievement: Pair Extraordinairex3Achievement: YOLOAchievement: Starstruckx2Achievement: Pull Sharkx3Achievement: QuickdrawAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Pair Extraordinairex3Achievement: YOLOAchievement: Starstruckx2Achievement: Pull Sharkx3Achievement: QuickdrawAchievement: Arctic Code Vault Contributor

Organizations

@Hack23

Block or report pethers

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
pethers/README.md

Hack23 Logo

👨‍💼 James Pether Sörling — CEO & Founder, Hack23 AB

Cybersecurity consulting · Security architecture · Cloud security · DevSecOps · Public ISMS · Open Source Transparency
📍 Gothenburg, Sweden 🇸🇪 — 30+ years in IT · CISSP · CISM · AWS Security & Solutions Architect (Professional)

Builder of ISMS-PUBLIC · Riksdagsmonitor · EU Parliament Monitor · European Parliament MCP Server · Citizen Intelligence Agency · CIA Compliance Manager · Black Trigram

Sponsor Hack23 on GitHub Sponsors Hack23 Website LinkedIn — James Pether Sörling GitHub Organization — Hack23 GitHub User — pethers OpenHub — pether

Hack23 Public ISMS ISO 27001:2022 aligned NIST CSF 2.0 aligned CIS Controls v8.1 aligned SLSA Level 3 supply-chain NIS2 / GDPR / EU CRA aligned

Top Swedish committers — pethers

📑 Table of Contents

💖 Sponsor Hack23 — Support Open Source Security

Sponsor Hack23

Help keep enterprise-grade security transparent, free, and independent.

Hack23 AB is bootstrapped, vendor-independent, and gives away what most consultancies sell behind a paywall — a complete public ISMS aligned with ISO 27001:2022 / NIS2 / GDPR / EU CRA / NIST CSF 2.0 / CIS Controls v8.1, production-grade open-source platforms for parliamentary transparency, and a deep Discordian Cybersecurity blog demystifying real-world security practice.

Your sponsorship directly funds:

Why sponsor? Most security knowledge sits behind NDAs and audit-firm paywalls. Hack23 publishes the actual policies, threat models, architectures, and source code we run — so anyone, anywhere, can learn from them, copy them, and improve them. Sponsorship is how the lights stay on without compromising independence or accepting hidden agendas.

🌟 Become a Hack23 sponsor → github.com/sponsors/Hack23

🎯 About Me

committers.top — Sweden — pethers

Strong advocate for transparency in organizations, secure software development practices, and innovative open-source solutions. Experienced security professional with over 30 years in information technology, specializing in security architecture, cloud security, DevSecOps, and compliance (ISO 27001, NIS2, GDPR, EU CRA, NIST CSF 2.0, CIS Controls v8.1).

Prior roles include:

  • 🛡️ Application Security Officer — Stena
  • 🛡️ Information Security Officer — Polestar
  • 🏗️ Senior Security Architect — WirelessCar

Currently CEO/Founder of Hack23 AB — a Swedish (Gothenburg-based) cybersecurity consultancy delivering practical security architecture, AWS cloud security, secure-SDLC enablement, and ISO 27001 / NIS2 / GDPR / EU CRA compliance through a 100 %-public ISMS and live open-source reference implementations.

🏆 Professional Certifications

CISSP — (ISC)² Certified Information Systems Security Professional CISM — ISACA Certified Information Security Manager AWS Certified Security – Specialty AWS Certified Solutions Architect – Professional

🔐 Commitment to Transparency and Security

At Hack23 AB, we believe that true security comes through transparency and demonstrable practices. Our Information Security Management System (ISMS) is publicly available, showcasing our commitment to open security practices and serving as a live reference for any organization building its own.

📋 Public ISMS Repository

Complete Information Security Management System — 40+ policies aligned with ISO 27001:2022, NIS2, GDPR, EU CRA, NIST CSF 2.0, and CIS Controls v8.1.

ISMS Public Repository

🔒 Information Security Policy

Enterprise-grade security framework and governance — the canonical, machine-verifiable policy set.

Information Security Policy

🏆 Security Through Transparency

Our approach to cybersecurity consulting is built on a foundation of transparent practices:

  • 🔍 Open Documentation — Complete ISMS framework available for review
  • 📋 Policy Transparency — Detailed security policies and procedures publicly accessible
  • 🎯 Demonstrable Expertise — Our own security implementation serves as a live demonstration
  • 🔄 Continuous Improvement — Public documentation enables community feedback and enhancement

"Our commitment to transparency extends to our security practices — demonstrating that true security comes from robust processes, continuous improvement, and a culture where security considerations are integrated from the start."

— James Pether Sörling, CEO/Founder, Hack23 AB

🏢 Hack23 AB

Swedish innovation hub specializing in cybersecurity consulting & solutions alongside immersive, security-aware game experiences.

🌐 https://hack23.com · 🏢 Org.nr 559534-7807 · 📍 Gothenburg, Sweden 🇸🇪

Hack23 Website Hack23 Services Why Hack23 CIA Triad FAQ Discordian Cybersecurity Blog Hack23 Sitemap

---

🍎 Discordian Cybersecurity Insights

Explore information security, ISMS policies, and cybersecurity best practices through the unique Discordian lens inspired by the Illuminatus! trilogy. "Think for yourself, question authority."

📖 Security Blog: 30+ Posts

Everything You Know About Security Is a Lie — Nation-state capabilities, approved crypto paradox, and Chapel Perilous initiation. Complete ISMS coverage with radical transparency.

Discordian Security Blog

Featured Content:

  • 🎭 Discordian Manifesto - Everything You Know About Security Is a Lie
  • 📚 Complete ISMS Coverage - All 30 posts link directly to ISMS-PUBLIC repository
  • 🍎 Illuminatus! Style - FNORD detection, Chapel Perilous references, 23 FNORD 5 signatures

All hail Eris! All hail Discordia! 🍎

🚀 Open Source Projects

A curated portfolio of Hack23 AB open-source projects — every one operated under the public ISMS, with OpenSSF Scorecard, SLSA Level 3 attestations, DeepWiki docs, and reproducible builds.

🌍 The Hack23 Ecosystem

%%{init: {"theme":"base","themeVariables":{"primaryColor":"#0066CC","primaryTextColor":"#fff","primaryBorderColor":"#003366","lineColor":"#94A3B8","secondaryColor":"#003399","tertiaryColor":"#7B1FA2","background":"#0F172A"}}}%%
graph TB
    subgraph CONSULT["💼 Hack23 AB — Cybersecurity Consulting"]
        SVC["🔑 Services<br/>hack23.com/services.html<br/>Architecture · Cloud · DevSecOps · Compliance"]
        ISMS["🔓 Public ISMS<br/>github.com/Hack23/ISMS-PUBLIC<br/>38 policies · ISO 27001:2022 · NIST CSF 2.0"]
        BLOG["🍎 Discordian Blog<br/>hack23.com/blog.html<br/>30+ posts · 8 languages"]
    end

    subgraph SOURCES["📡 Primary Open Data"]
        EP["🇪🇺 European Parliament<br/>data.europarl.europa.eu"]
        RD["🇸🇪 Riksdagen<br/>data.riksdagen.se"]
        REG["🇸🇪 Regeringskansliet<br/>regeringen.se"]
    end

    subgraph MCP["🔌 MCP Servers (AI Bridges)"]
        EPMCP["🇪🇺 European-Parliament-MCP-Server<br/>npm: european-parliament-mcp-server<br/>62 tools · 9 resources · 7 prompts"]
    end

    subgraph CIVIC["🏛️ Civic-Tech Platforms (Apache 2.0)"]
        CIA["🕵️ Citizen Intelligence Agency<br/>github.com/Hack23/cia<br/>Java 26 · Spring · 110 DB views · 1971–2024"]
        RM["🗳️ Riksdagsmonitor<br/>riksdagsmonitor.com<br/>11 agentic workflows · 14 languages"]
        EUM["🇪🇺 EU Parliament Monitor<br/>euparliamentmonitor.com<br/>9 agentic workflows · 14 languages"]
    end

    subgraph PRODUCT["📋 Products & Platforms"]
        CCM["📋 CIA Compliance Manager<br/>ciacompliancemanager.com<br/>npm: cia-compliance-manager<br/>React 19 · TypeScript 6"]
        BT["🥋 Black Trigram<br/>blacktrigram.com<br/>npm: blacktrigram<br/>Three.js · React 19 · 70 vital points"]
        GAME["🎮 Game Template<br/>github.com/Hack23/game<br/>SLSA 3 secure-by-default starter"]
    end

    subgraph AUDIENCE["👥 Audience"]
        USERS["Citizens · Journalists · Researchers · NGOs · Security teams · AI assistants (Claude · Cursor · Copilot · VS Code)"]
    end

    EP --> EPMCP
    EPMCP --> EUM
    RD --> CIA
    REG --> CIA
    CIA -->|"15 subsystems · nightly sync"| RM
    EUM --> USERS
    RM --> USERS
    CIA --> USERS
    CCM --> USERS
    BT --> USERS
    EPMCP -.->|"AI assistants"| USERS
    SVC --> USERS
    ISMS --> CIVIC
    ISMS --> PRODUCT
    BLOG --> USERS

    style CONSULT fill:#003366,stroke:#0066CC,color:#fff
    style ISMS fill:#0066CC,stroke:#003366,color:#fff
    style EPMCP fill:#6366F1,stroke:#4F46E5,color:#fff
    style CIA fill:#006B3F,stroke:#003F25,color:#fff
    style RM fill:#00338D,stroke:#FECC00,color:#fff
    style EUM fill:#003399,stroke:#FFCC00,color:#fff
    style CCM fill:#0066CC,stroke:#003366,color:#fff
    style BT fill:#000000,stroke:#FFD700,color:#FFD700
Loading

Single mission, one ISMS, one license (Apache-2.0), one set of compliance frameworks — applied identically across consulting, civic-tech and commercial products.

🚀 Flagship Open-Source Projects

Each project has its own ISMS-aligned SECURITY_ARCHITECTURE.md, THREAT_MODEL.md, OpenSSF Scorecard, OpenSSF Best Practices badge, SLSA 3 attestation and SonarCloud quality gate.

🗳️ Riksdagsmonitor — Swedish Political Intelligence

AI-driven monitoring of Sweden's Riksdag, Government and public agencies — 349 current MPs, 2,494 historical politicians (1971–2024), 3.5M+ votes, 109,000+ documents, 14 languages, every day.

Riksdagsmonitor live platform Riksdagsmonitor source on GitHub riksdagsmonitor npm package OpenSSF Scorecard for Riksdagsmonitor OpenSSF Best Practices badge for Riksdagsmonitor Ask DeepWiki about Riksdagsmonitor Riksdagsmonitor license

🔗 Surfaces: Live · Political Intelligence Hub · AI Newsroom · Dashboard · Sitemap · Features · Docs

🇪🇺 EU Parliament Monitor — European Political Intelligence

Brussels and Strasbourg made readable. AI-newsroom over the European Parliament's open data — 8 unified gh-aw workflows, 51 analytical artifacts per run, 14 languages, 1,700+ daily artifacts, full Admiralty / WEP / SAT / ACH tradecraft.

EU Parliament Monitor live platform EU Parliament Monitor source on GitHub OpenSSF Scorecard for EU Parliament Monitor OpenSSF Best Practices badge for EU Parliament Monitor SLSA Level 3 attestations for EU Parliament Monitor Ask DeepWiki about EU Parliament Monitor EU Parliament Monitor license

🔗 Surfaces: Live · Political Intelligence Hub · Sitemap · API Docs · Features · Docs

🔌 European Parliament MCP Server — AI Data Backbone

Canonical TypeScript Model Context Protocol server bridging the European Parliament Open Data Portal v2 to any MCP-aware AI client (Claude Desktop, VS Code, Cursor, GitHub Copilot). 62 tools, 9 resources, 7 prompts, full GDPR-by-design.

European Parliament MCP Server source on GitHub european-parliament-mcp-server npm package european-parliament-mcp-server npm monthly downloads OpenSSF Best Practices badge for European Parliament MCP Server Ask DeepWiki about European Parliament MCP Server European Parliament MCP Server documentation portal

🔗 Surfaces: Repository · npm · API Docs · Features · Docs

🕵️ Citizen Intelligence Agency (CIA) — Sweden's Data Backbone

Java/Spring/Vaadin OSINT platform monitoring Sweden's Riksdag, Government and Myndigheter since 2008. 110 database views, 50 risk-detection rules, 1971–2024 longitudinal coverage, 3.5M+ votes, 109K+ documents. The data backbone behind Riksdagsmonitor.

Citizen Intelligence Agency source on GitHub Citizen Intelligence Agency Maven site OpenSSF Scorecard for Citizen Intelligence Agency CII Best Practices badge for Citizen Intelligence Agency SLSA Level 3 attestations for Citizen Intelligence Agency SonarCloud quality gate for Citizen Intelligence Agency Ask DeepWiki about Citizen Intelligence Agency Citizen Intelligence Agency license

🔗 Surfaces: Repository · Architecture · Security Architecture · Threat Model · Features · Docs

📋 CIA Compliance Manager — Browser-Based GRC

React 19 / TypeScript 6 platform for CIA-triad assessment, multi-framework compliance, threat modeling and business-impact quantification. Available as a live web app and a tree-shakeable npm library with 10 subpath exports.

CIA Compliance Manager live application CIA Compliance Manager source on GitHub cia-compliance-manager npm package OpenSSF Scorecard for CIA Compliance Manager OpenSSF Best Practices badge for CIA Compliance Manager SLSA Level 3 attestations for CIA Compliance Manager Ask DeepWiki about CIA Compliance Manager

🔗 Surfaces: Live App · npm · API Docs · Features · Docs

🥋 Black Trigram (흑괘) — Korean Martial-Arts Combat Simulator

Production-ready 3D precision combat simulator. Eight I Ching trigram stances · 70 vital points · 51 authentic Korean martial-arts techniques · 5 fighter archetypes · 60fps desktop / 55fps+ mobile. React 19 · Three.js · TypeScript 6 · Vite 8.

Play Black Trigram live Black Trigram source on GitHub blacktrigram npm package OpenSSF Scorecard for Black Trigram OpenSSF Best Practices badge for Black Trigram SLSA Level 3 attestations for Black Trigram Ask DeepWiki about Black Trigram

🔗 Surfaces: Play · API Docs · Security Architecture · Threat Model · Features · Docs

🎮 Game Template — Secure-by-Default Game Starter

Reference implementation of a secure web-game project: React + TypeScript + Three.js + Vite, SLSA 3, full SBOM, automated security testing, ISMS-policy mapping ready to fork.

Hack23 secure game template Game template ISMS policy mapping

☁️ Lambda in Private VPC — AWS Reference Architecture

Battle-tested reference implementation: AWS Lambda in a private VPC with VPC endpoints, CloudFront, WAF, KMS encryption, CloudTrail and Security Hub integration.

AWS Lambda in private VPC reference architecture Tutorial on hack23.com blog

🧪 Sonar-CloudFormation-Plugin — Infrastructure-as-Code Static Analysis

Open-source SonarQube plugin that brings CloudFormation IaC scanning into existing SonarQube/SonarCloud quality gates.

Sonar CloudFormation plugin source on GitHub Hack23 SonarCloud organisation

🛡️ Public ISMS — Hack23/ISMS-PUBLIC

A fully public, version-controlled, machine-verifiable Information Security Management System. 38 policies covering access control, cryptography, secure development, threat modeling, vulnerability management, AI governance, GDPR privacy, EU CRA, ISO 27001:2022, NIST CSF 2.0, CIS Controls v8.1.

Hack23 public ISMS repository Information Security Policy ISMS compliance checklist

Domain Key Policies
🛠️ Secure Development Secure Development Policy · Threat Modeling · Vulnerability Management · Change Management
🔑 Access & Identity Access Control Policy · Segregation of Duties · Mobile Device Management
🌐 Network & Crypto Network Security Policy · Cryptography Policy
💾 Continuity Backup & Recovery · Business Continuity Plan · Disaster Recovery Plan
🚨 Incident Incident Response Plan
🤖 AI & LLM AI Policy · OWASP LLM Security Policy
📊 Risk & Compliance Risk Register · Risk Assessment Methodology · Compliance Checklist · Security Metrics · ISMS Metrics Dashboard
🇪🇺 Regulatory Privacy Policy (GDPR) · CRA Conformity Assessment Process (EU CRA) · ISO 5230 Self-Certification
🌟 Transparency ISMS Transparency Plan · Open Source Policy · STYLE_GUIDE

🌟 Why public? Because security claims must be auditable. Every customer, regulator, journalist or curious citizen can read, fork, critique or reuse our ISMS — and can independently verify that what we ship matches what we say.

🔑 Security Services

Professional cybersecurity consulting services delivered remotely or in-person in Gothenburg. Drawing from over three decades of experience in software development and security architecture, we deliver practical security solutions that integrate seamlessly into your development processes without hindering innovation.

📋 Service Overview

🌐 Availability Remote or in-person (Gothenburg)
💰 Pricing Contact for pricing
🏢 Company Hack23 AB (Org.nr 5595347807)
📧 Contact LinkedIn

🎯 Core Service Areas

Area Services Ideal for
🏗️ Security Architecture & Strategy Enterprise Security Architecture: Design and implementation of comprehensive security frameworks
Risk Assessment & Management: Systematic identification and mitigation of security risks
Security Strategy Development: Alignment of security initiatives with business objectives
Governance Framework Design: Policy development and security awareness programs 		Organizations needing strategic security leadership and architectural guidance
☁️ Cloud Security & DevSecOps Secure Cloud Solutions: AWS security assessment and architecture (Advanced level)
DevSecOps Integration: Security seamlessly integrated into agile development processes
Infrastructure as Code Security: Secure CloudFormation, Terraform implementations
Container & Serverless Security: Modern application security best practices 		Development teams transitioning to cloud-native architectures with security focus
🔧 Secure Development & Code Quality Secure SDLC Implementation: Building security into development lifecycles
CI/CD Security Integration: Automated security testing and validation
Code Quality & Security Analysis: Static analysis, vulnerability scanning
Supply Chain Security: SLSA Level 3 compliance, SBOM implementation 		Development teams seeking to embed security without slowing innovation

🏆 Specialized Expertise

Category Services Value
📋 Compliance & Regulatory Regulatory Compliance: GDPR, NIS2, ISO 27001 implementation
ISMS Design & Implementation: Information Security Management Systems
AI Governance: Emerging AI risk management frameworks
Audit Preparation: Documentation and evidence preparation 		Navigate complex regulatory landscapes with confidence
🌐 Open Source Security Open Source Program Office: OSPO establishment and management
Vulnerability Management: Open source risk assessment and remediation
Security Tool Development: Custom security solutions and automation
Community Engagement: Open source security best practices 		Leverage open source securely while contributing to security transparency
🎓 Security Culture & Training Security Awareness Programs: Building organization-wide security culture
Developer Security Training: Secure coding practices and methodologies
Leadership Security Briefings: Executive-level security understanding
Incident Response Training: Preparedness and response capability building 		Transform security from barrier to enabler through education and culture

💡 Why Choose Hack23 Security Services?

Three decades of hands-on experience in software development and security architecture means we understand the real challenges development teams face. We don't just point out problems—we provide practical, implementable solutions that enhance security without slowing down innovation.

Our approach: Security should be seamlessly integrated into your existing processes, not bolted on afterward. We help organizations build a culture of security awareness where protection becomes a natural part of how teams work, not an obstacle to overcome.

Passionate about transparency: As advocates for open source security, we believe in sharing knowledge and building community. Our solutions are designed to be understandable, maintainable, and aligned with industry best practices.

🏛️ CIA Compliance Manager Documentation

Current Architecture

Future Vision

🏛️ Citizen Intelligence Agency Documentation

Current Architecture

Future Vision & Operations

🇪🇺 EU Parliament Monitor Documentation

Current Architecture

Future Vision

🔌 European Parliament MCP Server Documentation

Current Architecture

Developer Resources

🔑 Security Focus Areas

mindmap
  root((🔐 CIA Triad<br>Security Focus))
    🔒 Confidentiality
      🏷️ Data Classification
        🌐 Public
        🛡️ Restricted
        🗝️ Confidential
        🔒 Secret
      🚪 Access Control
        👥 RBAC Implementation
        🔑 MFA Integration
        📉 Least Privilege
      🔑 Encryption
        🧬 AES-256
        🧿 Quantum-Safe Encryption
        🗝️ KMS Integration
    ✔️ Integrity
      🧪 Data Validation
        👁️ Manual Checks
        🤖 Automated Validation
        🔗 Blockchain Records
      🔄 Change Control
        📝 Audit Trails
        ♻️ Versioning
        🛡️ Non-Repudiation
      🏆 Quality Assurance
        🧑‍💻 Code Analysis
        🧩 Test Coverage
        🏅 SLSA Level 3
    ⏰ Availability
      🛡️ Resilience Levels
        💾 Backup/Restore
        🔥 Pilot Light
        ♨️ Warm Standby
        🌐 Multi-Site Active/Active
      📊 Recovery Metrics
        🕑 RTO Targets
        ⏳ RPO Objectives
        📈 Uptime SLAs
      👀 Monitoring
        ❤️ Health Checks
        🚨 Alerting
        💥 Chaos Testing
Loading

🌟 Featured in Press & Media

🗞️ Computer Sweden

Featured article on innovative use of technology for political transparency

Read Article

📰 Riksdag och Departement

Coverage on Citizen Intelligence Agency's monitoring capabilities

Read Article

📊 National Democratic Institute

Recognized in survey of parliamentary monitoring organizations

View Report

📰 Expressen

Eric Erfors credits Citizen Intelligence Agency for exposing politician voting attendance records

Read Article

🎤 Technical Talks & Presentations

🎙️ Javaforum Göteborg

Presentation on secure architecture patterns

Watch Presentation

🎙️ Shift Left Like A Boss

Security podcast guest appearance discussing DevSecOps

Listen to Podcast

💼 About James Pether Sörling

mindmap
  root((👨‍💼 James Pether Sörling))
    🔐 Information & Security Leadership
      👨‍💼 CISO / ISO Roles
      🛡️ Security Architecture
      🧩 CIA Triad Implementation
      🛠️ Policy Development & Governance
      📊 Risk Management
      🔍 Audit & Compliance Oversight
      🤖 AI Governance
      🌐 Open Source Program Office
    🏛️ Frameworks & Compliance
      📄 ISO 27001
      📄 NIST 800-53
      📄 VDA-ISA
      📄 CIS Controls
      🏷️ Data Protection / GDPR
      📋 ISMS Implementation
      🧪 Continuous Improvement
    ☁️ Cloud & Platform Security
      🌐 Multi-Cloud (AWS / Azure)
      🏗️ Enterprise & Reference Architectures
        🌍 Multi-Region Design
        🔁 Resilience & Failover
        ♻️ High Availability Patterns
      🔒 Secure Cloud Services
        Security Hub
        GuardDuty
        KMS
        WAF
      🧱 Network & VPC Security
      🔑 IAM / Least Privilege
    🛠️ Infrastructure as Code
      🧾 CloudFormation
      🛠️ Terraform
      🔄 GitOps / Pipelines
      🔍 Template Scanning
      📦 Supply Chain (SLSA Level 3)
    💻 Software Engineering
      ☕ Java / Spring
      ⚛️ React / TypeScript
      🐘 PostgreSQL
      🔄 CI/CD Automation
      🧪 Automated Testing
      🧵 Secure SDLC (SSDLC)
      📈 Code Quality (SonarQube)
    🔬 Security Operations & Assurance
      🚨 Incident Response
      🕵️ Vulnerability Management
      📈 Security Monitoring
      🧪 Threat Modeling
      📜 Logging & SIEM Use
    🌍 Open Source Leadership
      📋 CIA Compliance Manager
      🏛️ Citizen Intelligence Agency
      🇪🇺 EU Parliament Monitor
      🔌 European Parliament MCP Server
      🧩 Sonar-CloudFormation-Plugin
      🔧 cfn-nag Contributions
      🤝 Community Engagement
      👀 Code Review / Security Tooling
    🏆 Certifications & Recognition
      🎓 CISSP
      🎓 CISM
      🥇 AWS Security Specialty
      🥇 AWS Solutions Architect Professional
      🛡️ SLSA Level 3 Attestations
    🚀 Strategic Impact
      🔓 Transparency Advocacy
      🧭 Security-by-Design Enablement
      🧠 Knowledge Sharing / Speaking
      📢 Public Policy & Civic Tech
Loading

Experienced technology professional specializing in information security and delivery of secure cloud systems. Strong advocate for transparency in organizations and committed to ensuring robust security posture for modern applications through open source solutions.

🗺️ Site Map Overview

Hack23.com is a static, multi-language HTML/CSS site deployed to AWS S3 + CloudFront.
For the authoritative, always up-to-date sitemap, use the live page:

The sections below mirror the structure of sitemap.html with direct, HTTPS links and icons aligned with the ISMS Style Guide.

🏠 Home & Company

Mission, values, company details, and CIA Triad foundations.

🔑 Security Services

Professional cybersecurity consulting focused on security architecture, cloud security, DevSecOps, and compliance — with evidence-based practices and public ISMS.

🚀 Projects (Open-Source & Reference Implementations)

Open-source and reference projects used as live demonstrations of secure architecture, transparency, and practical security.

🎮 Black Trigram (Security-Aware Game)

Realistic 2D precision combat simulator based on traditional Korean martial arts, used as a security-aware game and educational platform.

🏛️ Citizen Intelligence Agency (CIA)

Open-source parliamentary monitoring and OSINT platform analyzing Swedish politics.

📋 CIA Compliance Manager

Browser-based compliance and CIA-triad assessment tool with no backend, focused on risk, impact, and framework mapping.

🗳️ Riksdagsmonitor

Swedish Parliament Intelligence Platform monitoring political activity in Sweden's Riksdag with systematic transparency through real-time analysis and 50+ years of historical data (1971-2024).

🇪🇺 EU Parliament Monitor

European Parliament Intelligence Platform with automated multi-language news generation covering plenary sessions, committee reports, propositions, and breaking news in 14 languages.

🔌 European Parliament MCP Server

Model Context Protocol Server for European Parliament Open Data — providing AI assistants with structured access to MEPs, plenary sessions, committees, legislative documents, and parliamentary questions.

🎮 Game Template

Secure game development template with React, TypeScript, Three.js, and Vite - built with security-first principles, comprehensive SBOM generation, and automated security testing aligned with Hack23 AB's ISMS.

🍎 Discordian Cybersecurity Blog & Insights

All blog content is centrally indexed here:

The blog blends ISMS-aligned policies with a Discordian, Illuminatus!-style narrative, making complex security concepts accessible while still professionally mapped to the public ISMS.

🎭 Core Manifesto & Philosophy

Representative themes (see blog.html for the full list and latest updates):

  • 🧠 Everything You Know About Security Is a Lie
  • 🏛️ The Security-Industrial Complex
  • 🔒 Question Authority: Crypto Approved By Spies
  • 🏷️ Think For Yourself: Classification & Data Handling

🏛️ CIA Project Series

Architecture, security, and financial/operational views of the Citizen Intelligence Agency platform:

🎮 Black Trigram Series

Deep dives into the architecture, biomechanics, and future roadmap of Black Trigram:

📋 Compliance Manager Series

Applies the CIA triad, STRIDE, and adaptive defense to real-world compliance tooling:

🧪 Code Analysis: “George Dorn” Series

Evidence-based code reviews based on the actual cloned repositories, not just documentation:

🧠 Thought Leadership & Election Analysis

For the full and current list of posts, see:
👉 https://hack23.com/blog.html

🛡️ ISMS & Security Policies (Public ISMS)

The “Discordian” documents on hack23.com mirror and explain the formal ISMS-PUBLIC repository in a more narrative, accessible style.
Key entry points:

Representative domains (see sitemap.html for the complete tree):

For the canonical policy set and machine-verifiable versions, see the public ISMS repository:
🔓 https://github.com/Hack23/ISMS-PUBLIC

🌐 Languages (Internationalization)

Hack23.com supports multiple languages, following the _sv / _ko conventions and language-specific sitemap pages.

🇬🇧 English (default)

🇸🇪 Swedish

🇰🇷 Korean

🇳🇱 Dutch

🇩🇪 German

🇫🇷 French

🇯🇵 Japanese

🇨🇳 Chinese

🔧 Technical Resources

Technical endpoints and repositories powering the public site:

GitHub Repositories:

💖 Support Open Source Security — Sponsor Hack23

Sponsor Hack23 ISMS Public Discordian Blog

If this work — the public ISMS, Riksdagsmonitor, EU Parliament Monitor, the European Parliament MCP Server, Citizen Intelligence Agency, CIA Compliance Manager, Black Trigram, the sonar-cloudformation-plugin, and the Discordian Cybersecurity blog — has helped you, your team, your reporting, or your democracy, please consider sponsoring:

🌟 github.com/sponsors/Hack23

Sponsorship keeps the projects independent, ad-free, vendor-neutral, and fully open-source under permissive licences.

📫 Connect

Sponsor Hack23 LinkedIn — James Pether Sörling Follow Hack23 on GitHub Hack23 Website Discordian Cybersecurity Blog Hack23 Tech Talks OpenHub — pether

Profile Views

© 2024–2026 James Pether Sörling / Hack23 AB · Content licensed CC BY 4.0 · Operated under the Hack23 Public ISMS (ISO 27001:2022 · NIS2 · GDPR · EU CRA · NIST CSF 2.0 · CIS Controls v8.1)

Pinned Loading

  1. Hack23/ISMS-PUBLIC Hack23/ISMS-PUBLIC Public

    Hack23 Public Information Security Management System:Security Through Transparency and Open Documentation Demonstrating Security Excellence Through Public ISMS Disclosure

    39 9

  2. Hack23/cia Hack23/cia Public

    Citizen Intelligence Agency. Open-source intelligence platform analyzing Swedish political activities using AI and data visualization. Tracks politicians, government institutions, and parliamentary…

    Java 219 55

  3. Hack23/riksdagsmonitor Hack23/riksdagsmonitor Public

    Riksdagsmonitor is a comprehensive intelligence platform for monitoring political activity in Sweden's Riksdag (Parliament). Built on the Citizen Intelligence Agency (CIA) platform, we provide syst…

    HTML 7 2

  4. Hack23/cia-compliance-manager Hack23/cia-compliance-manager Public

    The CIA Compliance Manager is an application that helps organizations assess and manage the availability, integrity, and confidentiality of their systems and data based on customizable security lev…

    TypeScript 18 9

  5. Hack23/blacktrigram Hack23/blacktrigram Public

    Black Trigram is a realistic combat simulator that teaches authentic Korean martial arts through precise anatomical targeting. Master traditional vital point techniques through modern 3D combat mec…

    TypeScript 6 5

  6. Hack23/game Hack23/game Public template

    A clean, minimal template for building games with React, TypeScript, Three.js, and Vite - built with security-first principles.

    TypeScript 11 5