Endpoint security
for schools and hospitals.
EDR with HIPAA and FERPA compliance built in. One agent, one console, $5/endpoint/month.
BSL 1.1 licensed · Source-available on GitHub · Built with Rust 2024
EDR with HIPAA and FERPA compliance built in. One agent, one console, $5/endpoint/month.
BSL 1.1 licensed · Source-available on GitHub · Built with Rust 2024
Every other EDR vendor gives you raw log exports and says "good luck." Bastion generates the compliance evidence directly, because the controls are built into the product, not bolted on afterward.
Live compliance score, control checklist with remediation steps, PHI access timeline. One screen, everything an auditor needs.
14+ FERPA controls tracked with live status. PII detection timeline showing every student record access event, filtered, searchable, exportable.
AES-256-GCM encryption for all PHI with key rotation. Not a config option. Satisfies HIPAA §164.312(a)(2)(iv) out of the box.
Hash-chained audit logs. Every admin action is signed, linked, and verifiable. Satisfies HIPAA §164.312(b). Export for auditors in one click.
Generate a draft breach notification report from within the console. No consultant required for the first draft.
"You are responsible for configuring HIPAA controls, building FERPA audit workflows, and generating compliance reports. We provide the security product. Compliance is out of scope."
HIPAA score is on your dashboard the moment you log in. FERPA PII detections are logged, tagged, and ready to export. Compliance is a feature, not an integration project.
79% of higher-ed institutions were hit by ransomware last year. The average healthcare breach costs $10.9 million. The security tools that stop this are priced for Fortune 500 companies.
Legacy EDR vendors cap their affordable tiers at 100 devices. Every school district and small hospital runs 500-2,000 endpoints. The next tier up: $100-$185/device/year. A 1,000-endpoint district: $100,000/year.
Entry-tier plans don't include real EDR. For detection, response, and forensics, you need the premium tier. 1,500-endpoint community hospital: $270,000/year. Compliance dashboards are still your problem.
No major EDR vendor ships a HIPAA compliance score, a FERPA control checklist, or a breach notification workflow. They sell you security. Compliance reports are a consulting engagement, $8,000-$24,000/year extra.
Replaces your separate AV, SIEM connector, compliance tool, and audit log solution.
Less than 0.5% CPU at idle. No JVM, no Electron, no Python runtime. Runs on 2016 hardware your students are already pushing hard.
YARA rule scanning, behavioral analytics, memory injection detection, script analysis. MITRE ATT&CK coverage mapped live.
Detect ransomware, isolate endpoint, quarantine file, kill process, notify IT, open Jira ticket. Automated for known threats.
Splunk HEC, Elasticsearch, and Microsoft Sentinel connectors built in and tested. No middleware, no custom scripts.
Isolate a compromised endpoint with one click. Block USB writes by policy. Recoverable, audited, reversible.
Every installed application across your fleet, updated in real time. Unapproved software flagged against your policy automatically.
Native desktop app on Windows, macOS, and Linux. Not a browser tab.
Live threat summary, compliance scores, and endpoint health.
Fleet view with OS, health status, last-seen, and group labels.
Detected threats with MITRE mapping, severity, and one-click response.
Live compliance score, PII detection timeline, control checklist.
PHI access audit trail, control status, breach notification workflow.
Detection coverage heatmap across all ATT&CK tactics.
Enterprise EDR vendors built their products for Fortune 500 security teams. The pricing, the staffing assumptions, the product complexity — all of it assumes a dedicated SOC and a seven-figure security budget.
School districts and community hospitals don't have that. They have two IT staff, aging hardware, and a compliance officer who's also the technology coordinator. They need the same protection. They can't afford the same products.
We wrote Bastion in Rust so it runs on the hardware these organizations actually own. We built HIPAA and FERPA dashboards into the product so compliance doesn't require a $25,000/year consultant. We priced it at $5-7/endpoint because that's what a 1,200-endpoint school district can actually budget for.
The source code is available under BSL 1.1 (converts to Apache 2.0 after 4 years). We think the organizations most vulnerable to breach should be able to inspect the software protecting them.
| Vendor | Price/endpoint/yr |
|---|---|
| CrowdStrike Falcon Go | $60 |
| SentinelOne Complete | $180 |
| Microsoft Defender for Business | $36/user |
| Huntress | ~$108 |
| Bastion EDR Professional | $84 |
Competitor pricing sourced from public websites, March 2025. Annual billing. Bastion Professional at $7/mo = $84/yr.
Annual billing saves 20%.
Core EDR for smaller fleets
or $48/endpoint billed annually
For K-12 and community healthcare
or $67/endpoint billed annually
Large districts, health systems, MSPs
Contact sales for volume pricing
Every Professional feature included. We send your download link and trial license within 1 business day.