Traditional cybersecurity measures are struggling to keep up in a digital threat landscape where speed, adaptability, and attacker ingenuity reign. For AHAD, a UAE-based cybersecurity firm, the answer lies not in chasing alerts after breaches occur but in staying several steps ahead. At the centre of this philosophy is Hacker Gazing, a platform that aims to pre-empt cyber threats through predictive intelligence, behavioural modelling, and deep integration across IT, OT and IoT environments.
Rather than relying solely on static threat feeds or legacy penetration testing tools, Hacker Gazing operates as a dynamic observatory, analysing adversarial behaviours before they materialise into active attacks. According to Muneeb Anjum, Founder and CEO of AHAD, the platform’s core premise is to operationalise threat intelligence at speed.
“At AHAD, we believe that the only way to win against dynamic adversaries is to think like them—but faster, and with more precision,” Anjum said. “Hacker Gazing operationalises threat intelligence by fusing attacker behaviour analytics, reconnaissance data, and real-time telemetry from across OT, IoT, and IT assets. We aren’t just collecting threat feeds—we’re building predictive models from them.”
This approach, which AHAD refers to as “pre-breach modelling,” is about seeing what attackers see before they act. The system maps an organisation’s digital infrastructure like a star chart, aligning likely attack paths with observed threat actor reconnaissance behaviours. “By mapping your digital infrastructure like a star chart and overlaying attacker recon behaviours, we identify which ‘constellations’ (assets, identities, ports, APIs) are likely to be targeted—and in what order,” Anjum explained. “This cosmic approach allows us to anticipate breaches as ‘cyber events,’ not mere accidents, and neutralise them pre-emptively.”
Founded to advance proactive cybersecurity in the Middle East and beyond, AHAD is led by Anjum and Rohan Daniel Nair, its Founder and Chief Operating Officer. Together, the two have shaped AHAD into a company focused on incident response and compliance and cyber vigilance as a continuous, real-time practice.
Central to the efficacy of Hacker Gazing is its ability to measure its impact, something many cybersecurity platforms struggle to articulate beyond surface-level metrics. At AHAD, simulations and red team exercises are guided by a focused set of KPIs that evaluate technical depth and business relevance.
“We rely on a robust set of quantitative and qualitative KPIs that evaluate both technical outcomes and business impact,” said Nair. “Key metrics include Exploitability Reduction Rate (ERR), Simulated Breach Coverage (SBC), Attack Path Depth (APD), Mean Time to Detect & Respond (MTTD/MTTR), Kill Chain Interruption Index (KCII), and Residual Risk Score (RRS).”
The metrics go beyond internal dashboards. They are mapped against global compliance frameworks such as NIST, ISO 27001, and CIS Top 18, ensuring that simulated exercises drive resilience and regulatory alignment.
In a crowded field of penetration testing tools, AHAD is positioning Hacker Gazing as more than just a test engine. “Hacker Gazing is not just another pen-testing engine—it’s a living, breathing cyber observatory,” said Anjum. “Hacker Gazing redefines value by embedding continuous adversarial emulation into a feedback loop that updates as the threat landscape evolves.”
Unlike traditional point-in-time assessments, Hacker Gazing evolves with organisational changes, whether cloud migration, a newly acquired asset, or a transformation in DevOps pipelines. “Our system integrates and visualises the entire attack surface, providing correlated insights across enterprise domains,” said Nair. “Instead of static checklists, we simulate threat actor campaigns and assess how your controls resist real-world attack flows, not just known CVEs.”
This constant recalibration is what AHAD refers to as “living security validation,” as opposed to what Anjum bluntly describes as “security theatre.”
The flexibility of Hacker Gazing makes it especially well-suited for organisations undergoing digital transformation. “Digital transformation without cyber assurance is digital risk,” Anjum said. “We’ve architected Hacker Gazing to be transformation-native—designed to move at the speed of DevOps pipelines, cloud migrations, and smart infrastructure deployments.”
Whether protecting legacy OT environments in critical infrastructure or testing firmware vulnerabilities in IoT devices, Hacker Gazing is tailored to integrate across diverse environments. From passive vulnerability mapping in SCADA systems to CI/CD plug-ins for pre-production security in IT stacks, the platform serves as what AHAD describes as a “digital guardian layer.”
Looking ahead, AHAD has clear ambitions for scaling Hacker Gazing into a national-grade cybersecurity platform. “Our long-term vision is clear: to make Hacker Gazing the North Star of National Cyber Vigilance,” said Nair. “Critical infrastructure—power grids, healthcare systems, water treatment facilities—demands more than patchwork security. It demands anticipatory defense.”
That ambition is supported by multiple vectors. AHAD is working to align Hacker Gazing with global and regional compliance standards such as IEC 62443, NIS2, ISR, SIA, and ADHICS, making the tool a technology layer and a regulatory enabler. Additionally, AHAD is pushing a managed services model to offer Hacker Gazing as Cyber Readiness-as-a-Service for national CERTs, enterprise SOCs, and sector-specific CSIRTs.
The firm is also investing in predictive threat forecasting. “We’re using predictive analytics to alert stakeholders to sector-specific campaigns before they propagate—especially for state-sponsored or APT-level threats,” Anjum said. Through partnerships with MSSPs, OEMs and cloud providers, AHAD aims to integrate Hacker Gazing into orchestration engines and SIEMs at a large scale.
The ultimate goal is for Hacker Gazing to become what antivirus software was two decades ago: essential, baseline, and omnipresent. “In five years, we envision Hacker Gazing as the baseline for cyber hygiene, much like antivirus was in the 2000s,” said Anjum. “But with the predictive power, reach, and adaptability demanded by tomorrow’s digital battlefield.”
With rising threat volumes, increasingly complex infrastructure and cybercrime becoming a national security concern, AHAD’s bet on pre-emptive security might be what critical infrastructure sectors need, not another layer of reactive defence, but a platform engineered to forecast and neutralise threats before they strike.
