==============================================================================
         DENSEDEFENSE END USER LICENSE AGREEMENT (EULA)
                          Version 1.1
                 Effective Date: April 20, 2026
==============================================================================

About This Agreement
----------------------------------------------------------------------

This End User License Agreement ("EULA" or "Agreement") is a binding
legal contract between you (either an individual or a single entity,
"Licensee" or "You") and DenseDefense ("Company," "We," "Us," or
"Our"), a Texas-based software company located in the Dallas-Fort
Worth metropolitan area. This Agreement governs your use of the
software products identified herein.

BY INSTALLING, COPYING, OR OTHERWISE USING ANY DENSEDEFENSE SOFTWARE
PRODUCT, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE
TO BE BOUND BY THE TERMS AND CONDITIONS OF THIS AGREEMENT. IF YOU
DO NOT AGREE, DO NOT INSTALL OR USE THE SOFTWARE. IF YOU ARE
ACCEPTING THESE TERMS ON BEHALF OF AN ORGANIZATION, YOU REPRESENT
AND WARRANT THAT YOU HAVE THE AUTHORITY TO BIND THAT ORGANIZATION
TO THESE TERMS.

Covered Products:

  Product      Description                                    Port
  ----------   -------------------------------------------    ----
  ForteFide    CMMC Level 2 / NIST SP 800-171 Rev 2           5000
               compliance scanner and automated
               remediation platform (Windows + Linux)

  ForteFed     NIST SP 800-53 Rev 5 / FedRAMP                 5001
               compliance scanner and automated
               remediation platform (Windows + Linux)

  PIPpro       Python source code obfuscation and             N/A
               intellectual property protection tool

This EULA applies to all versions, updates, patches, supplements,
and documentation associated with the above products (collectively,
the "Software"). References to specific product names apply to the
corresponding product; general terms apply to all products equally.
The specific product version installed on Licensee's system is
recorded in the Software's About dialog and in the installation
logs; this Agreement governs all such versions equally.

----------------------------------------------------------------------
1. Definitions
----------------------------------------------------------------------

  "Authorized User" means any individual whom the Licensee has
  expressly authorized to access and operate the Software on
  Licensee's behalf, subject to the terms of this Agreement.

  "Compliance Report" means any output generated by ForteFide or
  ForteFed, including but not limited to scan results, evidence
  packages, baseline snapshots, remediation logs, attestation
  records, and exportable PDF evidence bundles.

  "Danger Mode" means the optional high-risk remediation mode in
  ForteFide and ForteFed that enables automated execution of
  configuration changes flagged as potentially destructive, including
  changes to authentication policies, firewall rules, registry
  settings, and service configurations.

  "Documentation" means the user guides, administration guides, API
  references, quick-start guides, release notes, and any other
  written materials provided with the Software.

  "Evidence Package" means the cryptographically signed collection
  of scan results, configuration snapshots, remediation records, and
  attestation data generated by the Software for use in compliance
  assessments and audits.

  "License Key" means the Ed25519-signed digital credential issued
  by DenseDefense that activates the Software and defines the
  Licensee's entitlements, including tier, duration, and feature set.

  "Licensee" or "You" means the individual, organization,
  corporation, government agency, or other legal entity that has
  obtained a license to use the Software.

  "Remediation" means the automated or semi-automated modification
  of system configurations, registry entries, group policies,
  firewall rules, user account settings, file permissions, or other
  operating system or application parameters performed by the
  Software to bring an endpoint into compliance with applicable
  security controls.

  "Scan Target" means any computer, server, virtual machine,
  container, or network endpoint that the Licensee directs the
  Software to assess.

  "Software" means ForteFide, ForteFed, PIPpro, and any associated
  modules, libraries, plugins, scripts, documentation, and updates
  provided by DenseDefense under this Agreement.

----------------------------------------------------------------------
2. Grant of License
----------------------------------------------------------------------

2.1 License Grant

Subject to the terms and conditions of this Agreement and payment
of all applicable fees, DenseDefense grants to Licensee a limited,
non-exclusive, non-transferable, non-sublicensable, revocable
license to install and use the Software solely for Licensee's
internal business purposes during the license term, and only on the
number of machines or endpoints authorized by the applicable
License Key.

2.2 License Tiers

The Software is offered under multiple license tiers (e.g., Trial,
Standard, Professional, Enterprise). The specific features,
limitations, scan target counts, and support levels associated with
each tier are defined in the applicable order form, purchase
agreement, or License Key metadata. Licensee's rights under this
EULA are limited to those authorized by the tier purchased.

2.3 License Key Binding

The License Key is cryptographically bound to the Licensee and may
incorporate machine-specific identifiers. Each License Key is issued
for a specified term and product version. Licensee shall not share,
duplicate, transfer, or attempt to extract the signing key, private
key material, or any other cryptographic component embedded in or
associated with the License Key.

2.4 Evaluation Licenses

If the Software is provided under a trial, evaluation, or
proof-of-concept license, the license term, feature set, and scan
target limits are as specified in the evaluation agreement or
License Key. Evaluation licenses are provided "AS IS" with no
warranties of any kind. Upon expiration of the evaluation period,
Licensee must cease all use of the Software and delete all copies
unless a commercial license is obtained.

----------------------------------------------------------------------
3. License Restrictions
----------------------------------------------------------------------

Except as expressly permitted under this Agreement, Licensee shall
not:

  * Copy, modify, adapt, translate, reverse engineer, decompile,
    disassemble, or create derivative works based on the Software or
    any component thereof.

  * Reverse engineer, decrypt, extract, or attempt to derive the
    source code, object code, algorithms, data structures, or
    cryptographic keys of the Software, including but not limited to
    the Ed25519 license verification system, HKDF split-key
    derivation, AES-256-GCM encryption routines, or machine-binding
    mechanisms.

  * Use PIPpro or any other tool to de-obfuscate, deprotect, or
    reconstruct the source code of DenseDefense Software that has
    been compiled, obfuscated, or otherwise protected.

  * Remove, alter, or obscure any proprietary notices, labels,
    trademarks, watermarks, or copyright markings on or in the
    Software.

  * Rent, lease, lend, sell, sublicense, distribute, publish, or
    otherwise make the Software available to any third party,
    including through hosting, SaaS, managed service, or
    time-sharing arrangements, unless expressly authorized in
    writing by DenseDefense.

  * Use the Software to develop a competing product or service, or
    to provide compliance scanning, remediation, or assessment
    services to third parties without an OEM, reseller, or managed
    service provider agreement.

  * Use the Software in any manner that violates applicable local,
    state, national, or international law or regulation.

  * Share, publish, or disclose License Keys, activation codes, or
    license-related cryptographic materials to any unauthorized
    party.

  * Exceed the scan target limits, user counts, or other
    quantitative restrictions defined in the License Key or
    applicable order form.

  * Use the Software to scan, assess, or remediate systems for
    which Licensee does not have proper authorization from the
    system owner.

----------------------------------------------------------------------
4. Intellectual Property Rights
----------------------------------------------------------------------

4.1 Ownership

The Software, including all copies, modifications, enhancements,
derivative works, and all intellectual property rights therein, is
and shall remain the sole and exclusive property of DenseDefense.
This Agreement does not convey to Licensee any rights of ownership
in or related to the Software, its source code, algorithms,
architectures, documentation, or any associated trade secrets. All
rights not expressly granted herein are reserved by DenseDefense.

4.2 Trademarks

"DenseDefense," "ForteFide," "ForteFed," "PIPpro," "HallMonitor,"
and all associated logos, icons, and product names are trademarks or
registered trademarks of DenseDefense. Licensee is granted no right
or license to use any DenseDefense trademarks except as required
for reasonable and customary use in describing the origin of the
Software in accordance with nominative fair use principles.

4.3 Feedback

If Licensee provides DenseDefense with any suggestions, ideas,
enhancement requests, bug reports, or other feedback relating to
the Software ("Feedback"), Licensee hereby grants DenseDefense a
non-exclusive, royalty-free license to use, reproduce, and
incorporate such Feedback SOLELY FOR THE PURPOSE OF IMPROVING THE
SOFTWARE and related DenseDefense products and services. This
license does not extend to Licensee's confidential business
information, network configurations, security controls,
credentials, or any other Licensee Data that may be incidentally
included in a Feedback submission; such information remains the
property of Licensee and is governed by Section 4.4 (Licensee
Data) and Section 10 (Data & Security).

Licensee is encouraged to avoid including confidential or
sensitive information in Feedback submissions. DenseDefense will
treat any confidential information included in Feedback with the
same standard of care as Licensee Data and will not disclose such
information to third parties without Licensee's consent.

4.4 Licensee Data

Notwithstanding the foregoing, DenseDefense does not claim any
ownership interest in Licensee's scan data, configuration data,
compliance reports, evidence packages, or other data generated by
the Software from Licensee's systems ("Licensee Data"). Licensee
retains all right, title, and interest in Licensee Data, subject to
the limited rights granted to DenseDefense under Section 10
(Data & Security).

----------------------------------------------------------------------
5. WARRANTY DISCLAIMER
----------------------------------------------------------------------

5.1 AS-IS BASIS

THE SOFTWARE IS PROVIDED "AS IS" AND "AS AVAILABLE," WITHOUT
WARRANTY OF ANY KIND, EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE.
DENSEDEFENSE EXPRESSLY DISCLAIMS ALL WARRANTIES, INCLUDING BUT NOT
LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
PARTICULAR PURPOSE, TITLE, NON-INFRINGEMENT, ACCURACY, RELIABILITY,
AND ANY WARRANTIES ARISING FROM COURSE OF DEALING, COURSE OF
PERFORMANCE, OR USAGE OF TRADE.

5.2 NO GUARANTEE OF COMPLIANCE

DENSEDEFENSE DOES NOT WARRANT, REPRESENT, OR GUARANTEE THAT:
(A) THE SOFTWARE WILL ACCURATELY IDENTIFY ALL SECURITY
VULNERABILITIES, CONFIGURATION DEFICIENCIES, OR COMPLIANCE GAPS;
(B) THE SOFTWARE'S COMPLIANCE REPORTS, EVIDENCE PACKAGES, OR SCAN
RESULTS WILL BE ACCEPTED BY ANY THIRD-PARTY ASSESSOR,
CERTIFICATION BODY (INCLUDING C3PAOs), GOVERNMENT AGENCY, OR
AUDITOR; (C) USE OF THE SOFTWARE WILL RESULT IN CMMC
CERTIFICATION, FedRAMP AUTHORIZATION, OR COMPLIANCE WITH ANY
SPECIFIC REGULATORY FRAMEWORK; (D) THE REMEDIATION ACTIONS
PERFORMED BY THE SOFTWARE WILL BE COMPLETE, CORRECT, OR SUFFICIENT
TO SATISFY ANY PARTICULAR COMPLIANCE REQUIREMENT; OR (E) THE
SOFTWARE WILL OPERATE WITHOUT INTERRUPTION, ERROR, OR DATA LOSS.

5.3 SCANNER ACCURACY

COMPLIANCE SCANNING INVOLVES INHERENT LIMITATIONS INCLUDING BUT
NOT LIMITED TO FALSE POSITIVES (REPORTING A CONTROL AS NOT MET WHEN
IT IS ACTUALLY SATISFIED), FALSE NEGATIVES (REPORTING A CONTROL AS
MET WHEN IT IS NOT ACTUALLY SATISFIED), ENVIRONMENTAL VARIATIONS,
TIMING DEPENDENCIES, AND INTERPRETATION DIFFERENCES. LICENSEE
ACKNOWLEDGES THAT SCAN RESULTS REQUIRE INDEPENDENT VERIFICATION BY
QUALIFIED PERSONNEL AND THAT DENSEDEFENSE BEARS NO RESPONSIBILITY
FOR DECISIONS MADE IN RELIANCE ON SCAN OUTPUT.

5.4 EVIDENCE PACKAGES

EVIDENCE PACKAGES GENERATED BY THE SOFTWARE ARE PROVIDED FOR
INFORMATIONAL AND PREPARATORY PURPOSES ONLY. THEY DO NOT
CONSTITUTE A LEGAL OPINION, CERTIFIED AUDIT REPORT, OR OFFICIAL
COMPLIANCE DETERMINATION. DENSEDEFENSE DISCLAIMS ALL LIABILITY
ARISING FROM THE USE OF EVIDENCE PACKAGES IN LEGAL PROCEEDINGS,
REGULATORY SUBMISSIONS, GOVERNMENT AUDITS, OR CONTRACTUAL
DISPUTES.

----------------------------------------------------------------------
6. LIMITATION OF LIABILITY
----------------------------------------------------------------------

6.1 EXCLUSION OF DAMAGES

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT
SHALL DENSEDEFENSE, ITS OFFICERS, DIRECTORS, EMPLOYEES, AGENTS,
AFFILIATES, SUCCESSORS, OR ASSIGNS BE LIABLE TO LICENSEE OR ANY
THIRD PARTY FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL,
PUNITIVE, OR EXEMPLARY DAMAGES, INCLUDING BUT NOT LIMITED TO:
(A) LOSS OF PROFITS, REVENUE, BUSINESS, GOODWILL, OR ANTICIPATED
SAVINGS; (B) LOSS OF DATA, SYSTEM CONFIGURATIONS, OR SECURITY
SETTINGS; (C) COST OF PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
(D) SERVICE INTERRUPTIONS, SYSTEM DOWNTIME, OR INABILITY TO ACCESS
SYSTEMS; (E) LOSS OF OR FAILURE TO ACHIEVE CMMC CERTIFICATION,
FedRAMP AUTHORIZATION, OR ANY OTHER COMPLIANCE CERTIFICATION;
(F) PENALTIES, FINES, OR SANCTIONS IMPOSED BY ANY GOVERNMENT
AGENCY, PRIME CONTRACTOR, OR CERTIFICATION BODY; (G) COSTS
ASSOCIATED WITH USER LOCKOUTS, AUTHENTICATION FAILURES, OR SERVICE
DISRUPTIONS CAUSED BY REMEDIATION ACTIONS INITIATED BY LICENSEE --
REGARDLESS OF WHETHER SUCH DAMAGES ARE BASED ON CONTRACT, TORT
(INCLUDING NEGLIGENCE), STRICT LIABILITY, OR ANY OTHER LEGAL
THEORY, AND EVEN IF DENSEDEFENSE HAS BEEN ADVISED OF THE
POSSIBILITY OF SUCH DAMAGES.

6.1.1 CARVEOUT FOR DENSEDEFENSE'S OWN SECURITY FAILURES

The exclusions in Section 6.1 do NOT apply to damages arising
from UNAUTHORIZED ACCESS TO OR DISCLOSURE OF CREDENTIALS ENTERED
INTO THE SOFTWARE, OR OF LICENSEE DATA, that results from a
security vulnerability in the Software itself (including but not
limited to a cryptographic flaw, a credential-storage flaw, an
authentication bypass, or an exploitable vulnerability in the
Software's binary protection or license verification system).
For such damages, the limitations in Section 6.2 continue to
apply.

6.2 AGGREGATE LIABILITY CAP

DENSEDEFENSE'S TOTAL CUMULATIVE LIABILITY ARISING OUT OF OR RELATED
TO THIS AGREEMENT, WHETHER IN CONTRACT, TORT, OR OTHERWISE, SHALL
NOT EXCEED THE GREATER OF:

  (A) THE TOTAL AMOUNT OF LICENSE FEES ACTUALLY PAID BY LICENSEE
      TO DENSEDEFENSE DURING THE TWELVE (12) MONTH PERIOD
      IMMEDIATELY PRECEDING THE EVENT GIVING RISE TO THE CLAIM; OR

  (B) FOR ENTERPRISE-TIER LICENSES, ONE HUNDRED THOUSAND UNITED
      STATES DOLLARS (US$100,000); FOR PROFESSIONAL-TIER LICENSES,
      TWENTY-FIVE THOUSAND UNITED STATES DOLLARS (US$25,000); FOR
      STARTER-TIER LICENSES, FIVE THOUSAND UNITED STATES DOLLARS
      (US$5,000).

IF NO FEES HAVE BEEN PAID (E.G., UNDER A TRIAL OR EVALUATION
LICENSE), DENSEDEFENSE'S TOTAL LIABILITY SHALL NOT EXCEED FIFTY
UNITED STATES DOLLARS (US$50.00).

6.3 ESSENTIAL PURPOSE

THE LIMITATIONS SET FORTH IN THIS SECTION SHALL APPLY EVEN IF ANY
REMEDY PROVIDED UNDER THIS AGREEMENT FAILS OF ITS ESSENTIAL
PURPOSE. SOME JURISDICTIONS DO NOT ALLOW THE EXCLUSION OR
LIMITATION OF INCIDENTAL OR CONSEQUENTIAL DAMAGES; IN SUCH
JURISDICTIONS, DENSEDEFENSE'S LIABILITY SHALL BE LIMITED TO THE
MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW.

----------------------------------------------------------------------
7. Indemnification
----------------------------------------------------------------------

7.1 Indemnification by Licensee

Licensee shall defend, indemnify, and hold harmless DenseDefense,
its officers, directors, employees, agents, affiliates, successors,
and assigns from and against all claims, damages, losses,
liabilities, costs, and expenses (including reasonable attorneys'
fees) arising out of or relating to: (a) Licensee's use of the
Software; (b) Licensee's breach of this Agreement; (c) Licensee's
violation of any applicable law, regulation, or third-party right;
(d) any remediation actions initiated by Licensee through the
Software; (e) Licensee's representations to third parties regarding
the Software's capabilities or compliance status; or (f) any claim
by a third party that Licensee's use of the Software infringed or
misappropriated a third party's rights.

7.2 Indemnification by DenseDefense

DenseDefense shall defend, indemnify, and hold harmless Licensee
from and against any third-party claim that the Software, as
provided by DenseDefense and used in accordance with this Agreement,
directly infringes a United States patent, copyright, or trade
secret of such third party, provided that: (a) Licensee promptly
notifies DenseDefense in writing of such claim; (b) DenseDefense
has sole control of the defense and settlement; and (c) Licensee
provides reasonable cooperation at DenseDefense's expense.
DenseDefense's obligations under this section shall not apply to
any claim arising from: (i) modification of the Software by anyone
other than DenseDefense; (ii) combination of the Software with
non-DenseDefense products; (iii) use of the Software other than in
accordance with this Agreement and the Documentation; or
(iv) Licensee's continued use after being notified to cease.

----------------------------------------------------------------------
8. Compliance & Regulatory Disclaimer
----------------------------------------------------------------------

8.1 Not a Compliance Guarantee

The Software is a tool designed to assist organizations in
assessing and improving their security posture against recognized
frameworks (NIST SP 800-171, NIST SP 800-53 Rev 5, CMMC Level 2,
FedRAMP). The Software does not guarantee, certify, or warrant that
Licensee will achieve or maintain compliance with any regulatory
framework, contractual obligation, or government mandate. Compliance
is the sole responsibility of the Licensee.

8.2 Not a Substitute for Professional Assessment

The Software is not a substitute for a qualified CMMC Third-Party
Assessment Organization (C3PAO) assessment, FedRAMP Third-Party
Assessment Organization (3PAO) assessment, independent audit, or
legal counsel. Licensee should engage qualified assessors, auditors,
and legal professionals to validate compliance posture independently
of the Software's output.

8.3 Framework Version Dependency

The Software's control mappings, assessment logic, and remediation
scripts are based on specific versions of regulatory frameworks as
published at the time of the Software release. DenseDefense makes
no warranty that the Software's assessments reflect the most current
version of any framework, interim final rule, or supplemental
guidance. Licensee is responsible for verifying that the Software's
framework version aligns with the applicable assessment
requirements.

8.4 Third-Party Reliance

Compliance Reports and Evidence Packages are intended for
Licensee's internal use and to assist in preparing for third-party
assessments. DenseDefense is not responsible for, and makes no
representation regarding, how any third party (including C3PAOs,
3PAOs, government agencies, prime contractors, auditors, or courts)
may interpret, accept, reject, or rely upon the Software's output.
Any reliance on the Software's output by third parties is at such
third party's own risk.

----------------------------------------------------------------------
9. Automated Remediation Acknowledgment
----------------------------------------------------------------------

9.1 Nature of Remediation

ForteFide and ForteFed include automated remediation capabilities
that modify system configurations, including but not limited to:
Windows Registry entries, Local Group Policy settings, security
policies, firewall rules, user account configurations, file and
folder permissions, service configurations, audit policies, and
system hardening parameters. On Linux systems, remediation may
modify configuration files in /etc, PAM settings, firewall rules,
SSH configurations, kernel parameters, and file permissions.

9.2 Risk Acknowledgment

LICENSEE ACKNOWLEDGES AND AGREES THAT AUTOMATED REMEDIATION
CARRIES INHERENT RISKS, INCLUDING BUT NOT LIMITED TO:

  * Service interruption or failure of critical applications,
    databases, or network services due to configuration changes.

  * User lockout from systems due to changes in authentication
    policies, password requirements, or account configurations.

  * Data loss or corruption resulting from changes to file
    permissions, encryption settings, or storage configurations.

  * Network connectivity disruption due to firewall rule
    modifications or network configuration changes.

  * Incompatibility with existing applications, services, or custom
    configurations deployed in Licensee's environment.

  * Unintended cascade effects where one remediation action triggers
    failures in dependent services or applications.

9.3 Danger Mode

The Software includes a "Danger Mode" feature that, when enabled by
the Licensee, permits the execution of high-risk remediation actions
that are normally blocked by safety controls. These actions may
include modifications to domain controller policies, critical
authentication settings, encryption configurations, and other
changes that could render systems inaccessible or inoperable. BY
ENABLING DANGER MODE, LICENSEE EXPRESSLY ACKNOWLEDGES THE ELEVATED
RISK OF DATA LOSS, SERVICE DISRUPTION, AND SYSTEM INACCESSIBILITY,
AND ACCEPTS SOLE AND COMPLETE RESPONSIBILITY FOR ALL CONSEQUENCES
ARISING FROM THE USE OF DANGER MODE.

9.4 Pre-Remediation Obligations

Before initiating any remediation action, Licensee is solely
responsible for:

  * Performing and verifying a complete backup of all affected
    systems, including system state, configuration data, and user
    data.

  * Testing remediation actions in a non-production, isolated
    environment that mirrors the production configuration.

  * Reviewing the specific remediation actions the Software will
    perform and understanding their potential impact.

  * Ensuring that all remediation actions have been approved by
    Licensee's change management process.

  * Maintaining current, tested disaster recovery and rollback
    procedures.

  * Ensuring that administrative credentials provided to the
    Software are limited to the minimum privilege required.

9.5 Credential Handling

The Software requires administrative credentials (usernames,
passwords, SSH keys, or other authentication factors) to perform
scanning and remediation operations on target systems. Licensee
acknowledges that: (a) credentials are transmitted to target systems
to execute scan and remediation commands; (b) credentials may be
stored in encrypted form in the local session database during active
scans; (c) DenseDefense does not transmit credentials to any
DenseDefense server or third party; and (d) Licensee is solely
responsible for the security of the machine on which the Software
is installed, and for ensuring that credentials are not exposed to
unauthorized users through physical access, screen capture, memory
dump, or other means.

----------------------------------------------------------------------
10. Data & Security
----------------------------------------------------------------------

10.1 Local Data Storage

The Software stores scan results, configuration data, evidence
packages, and session state locally on the machine where the
Software is installed. DenseDefense does not operate a cloud service
for these products and does not collect, transmit, or store Licensee
Data on DenseDefense servers, except as expressly described in this
Section.

10.2 License Verification

The Software may communicate with DenseDefense servers solely for
the purpose of license verification, activation, and update checks.
Such communications transmit only the License Key identifier,
product version, and machine identifier. No scan data, credentials,
or compliance results are transmitted during license verification.

10.3 Air-Gap and Classified Environments

The Software is designed to operate in air-gapped and disconnected
environments. Offline license activation is supported. Licensee is
solely responsible for ensuring that the Software's deployment
complies with all applicable security classification requirements,
facility clearance requirements, and information handling procedures
governing Licensee's environment. DenseDefense makes no
representation that the Software has been certified or accredited
for use in any specific classification level, sensitive
compartmented information facility (SCIF), or controlled
environment.

10.4 Telemetry

The Software does not include telemetry, analytics, or usage
tracking functionality. No diagnostic data, crash reports, or usage
statistics are collected or transmitted automatically. If
DenseDefense introduces optional telemetry in future versions, it
will be disabled by default and clearly disclosed in the release
notes.

10.5 Data Retention and Destruction

Upon termination of this Agreement, Licensee shall destroy all
copies of the Software and certify such destruction in writing upon
request. Licensee retains ownership of all Licensee Data and may
retain Compliance Reports generated during the license term for
archival and audit purposes.

----------------------------------------------------------------------
11. Export Controls
----------------------------------------------------------------------

11.1 Compliance with Export Laws

The Software may be subject to United States export control laws
and regulations, including the Export Administration Regulations
(EAR, 15 CFR Parts 730-774) and sanctions programs administered by
the Office of Foreign Assets Control (OFAC, 31 CFR Part 500).
Licensee shall not export, re-export, or transfer the Software,
directly or indirectly, to any country, entity, or person
prohibited by United States export control laws without prior
authorization from the appropriate United States government
authority.

11.2 Licensee Representations

Licensee represents and warrants that: (a) Licensee is not located
in, and will not export or re-export the Software to, any country
subject to a United States trade embargo or comprehensive sanctions
program; (b) Licensee is not, and is not acting on behalf of, any
person or entity listed on any United States government restricted
party list, including the OFAC Specially Designated Nationals and
Blocked Persons List (SDN List), the BIS Entity List, or the BIS
Denied Persons List; and (c) Licensee will not use the Software
for any purpose prohibited by United States export control laws,
including the development, design, manufacture, or production of
nuclear, chemical, or biological weapons, or missile technology.

11.3 Encryption

The Software incorporates cryptographic functionality (AES-256-GCM,
Ed25519, HKDF) that may be subject to additional export control
requirements. Licensee is responsible for obtaining any required
export licenses or exemptions for the use and distribution of
encryption software in Licensee's jurisdiction.

----------------------------------------------------------------------
12. Term & Termination
----------------------------------------------------------------------

12.1 Term

This Agreement is effective upon Licensee's acceptance (by
installation or use of the Software) and continues for the duration
specified in the License Key or applicable order form. For
subscription licenses, the term automatically renews for successive
periods of equal length unless either party provides written notice
of non-renewal at least thirty (30) days prior to the end of the
then-current term.

12.2 Termination for Cause

Either party may terminate this Agreement immediately upon written
notice if the other party: (a) materially breaches this Agreement
and fails to cure such breach within thirty (30) days after written
notice; or (b) becomes insolvent, files for bankruptcy, or has a
receiver appointed for a substantial part of its assets.

12.3 Termination by DenseDefense

DenseDefense may terminate this Agreement immediately upon written
notice if Licensee KNOWINGLY and WILLFULLY: (a) circumvents the
license verification system for the purpose of exceeding the
Licensee's license tier or seat count; (b) reverse engineers,
decompiles, or extracts the Software's cryptographic keys with
intent to distribute or publish such keys; (c) distributes or
shares License Keys with unauthorized parties; or (d) uses the
Software to scan or remediate systems without proper
authorization from the system owner.

For conduct that is not knowing and willful, or for other
material breaches, DenseDefense shall provide Licensee with
written notice specifying the alleged breach and a cure period
of thirty (30) days before terminating this Agreement. Licensee
may cure the alleged breach within the cure period by ceasing
the conduct and taking reasonable remedial steps. The parties
acknowledge that activities such as security research conducted
in good faith, static analysis of the Software performed as part
of Licensee's internal third-party-software review process, and
troubleshooting activities performed by Licensee's IT staff are
NOT by themselves grounds for termination absent intent to
circumvent or extract cryptographic material.

12.4 Effect of Termination

Upon termination or expiration of this Agreement: (a) all licenses
granted hereunder shall immediately terminate; (b) Licensee shall
cease all use of the Software; (c) Licensee shall destroy all
copies of the Software in Licensee's possession or control; and
(d) Licensee shall certify such destruction in writing upon request.
Sections 1, 3, 4, 5, 6, 7, 8, 9.2, 9.3, 10.5, 11, 13, 14, 15,
and 16 shall survive any termination or expiration of this
Agreement.

----------------------------------------------------------------------
13. U.S. Government Use
----------------------------------------------------------------------

13.1 Commercial Computer Software

The Software is "commercial computer software" and the
Documentation is "commercial computer software documentation" as
those terms are defined in FAR 2.101, DFARS 227.7202, and DFARS
252.227-7014. If the Software is acquired by or on behalf of a
civilian agency, the Government's rights with respect to the
Software and Documentation are subject to the terms of this
Agreement as set forth in FAR 12.212. If the Software is acquired
by or on behalf of the Department of Defense or any component
thereof, the Government's rights with respect to the Software and
Documentation are subject to the terms of this Agreement as set
forth in DFARS 227.7202-3.

13.2 Restricted Rights

Use, duplication, or disclosure by the U.S. Government is subject
to restrictions as set forth in this Agreement and as provided in
DFARS 227.7202-1(a) and 227.7202-3(a) (1995), DFARS
252.227-7013(c)(1)(ii) (OCT 1988), FAR 12.212(a) (1995), FAR
52.227-19, or FAR 52.227-14 (ALT III), as applicable.
Contractor/Manufacturer: DenseDefense, DFW, Texas.

13.3 No Government Endorsement

DenseDefense's sale of the Software to government entities does not
constitute government endorsement, certification, or approval of
the Software. The Software has not been certified, accredited, or
authorized by the Department of Defense, NIST, CISA, or any other
government agency. Any claim by DenseDefense that the Software
assesses compliance with government frameworks (CMMC, FedRAMP,
NIST) refers to the Software's programmatic assessment capabilities
and does not imply official government endorsement of the Software
or its output.

----------------------------------------------------------------------
14. Anti-Circumvention
----------------------------------------------------------------------

14.1 Technological Protection Measures

The Software incorporates technological protection measures ("TPMs")
including, without limitation, Ed25519 digital signature
verification, HKDF-based split-key derivation, AES-256-GCM
encryption, machine binding, compiled binary protection (Nuitka
compilation), and source code obfuscation (PIPpro). These TPMs are
designed to protect DenseDefense's intellectual property rights and
enforce license terms.

14.2 Prohibited Circumvention

Licensee shall not, and shall not assist, encourage, or enable any
third party to: (a) circumvent, bypass, disable, remove, or impair
any TPM incorporated in the Software; (b) develop, distribute, or
use any tool, device, or software designed to circumvent the
Software's TPMs; (c) extract, reconstruct, or derive private key
material, signing keys, encryption keys, or other cryptographic
secrets from the Software; or (d) use PIPpro or any other
de-obfuscation tool to reverse the protection applied to
DenseDefense Software.

14.3 DMCA Notice

Licensee acknowledges that circumvention of the Software's TPMs may
constitute a violation of the Digital Millennium Copyright Act
(17 U.S.C. 1201) and analogous international anti-circumvention
laws. DenseDefense reserves all rights and remedies available under
the DMCA and applicable law, including the right to seek injunctive
relief, statutory damages, and recovery of attorneys' fees.

----------------------------------------------------------------------
15. Dispute Resolution & Governing Law
----------------------------------------------------------------------

15.1 Governing Law

This Agreement shall be governed by and construed in accordance
with the laws of the State of Texas, United States of America,
without regard to its conflict of laws principles. The United
Nations Convention on Contracts for the International Sale of Goods
(CISG) is expressly excluded.

15.2 Arbitration

Any dispute, controversy, or claim arising out of or relating to
this Agreement, or the breach, termination, or invalidity thereof,
shall be settled by binding arbitration administered by the American
Arbitration Association ("AAA") in accordance with its Commercial
Arbitration Rules. The arbitration shall be conducted by a single
arbitrator selected in accordance with the AAA Rules. The seat of
arbitration shall be Dallas, Texas. The language of the arbitration
shall be English. The arbitrator's award shall be final and binding
and may be entered as a judgment in any court of competent
jurisdiction.

15.3 Injunctive Relief

Notwithstanding the foregoing, either party may seek injunctive or
other equitable relief in any court of competent jurisdiction to
prevent the actual or threatened infringement, misappropriation, or
violation of intellectual property rights, confidentiality
obligations, or the anti-circumvention provisions of this Agreement.
Any such action shall be brought exclusively in the state or
federal courts located in Dallas County, Texas, and each party
irrevocably consents to the personal jurisdiction of such courts.

15.4 Attorneys' Fees

In any action or proceeding to enforce this Agreement, the
prevailing party shall be entitled to recover its reasonable
attorneys' fees, costs, and expenses from the non-prevailing party.

15.5 Class Action Waiver

TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW, LICENSEE AND
DENSEDEFENSE EACH WAIVE THE RIGHT TO PARTICIPATE IN A CLASS ACTION,
COLLECTIVE ACTION, PRIVATE ATTORNEY GENERAL ACTION, OR OTHER
REPRESENTATIVE PROCEEDING. ALL DISPUTES SHALL BE RESOLVED ON AN
INDIVIDUAL BASIS ONLY.

----------------------------------------------------------------------
16. General Provisions
----------------------------------------------------------------------

16.1 Entire Agreement

This Agreement, together with any applicable order form, purchase
agreement, or statement of work, constitutes the entire agreement
between the parties with respect to the subject matter hereof and
supersedes all prior or contemporaneous understandings,
representations, negotiations, and communications, whether written
or oral.

16.2 Amendment

DenseDefense may modify this Agreement from time to time. The
specific terms that apply to Licensee are the terms in effect on
the date Licensee's current license term began, and those terms
remain in effect for the full paid license term regardless of any
subsequent revision published by DenseDefense.

For subscription renewals, the then-current version of this
Agreement will apply to the renewed term. DenseDefense will
provide Licensee with at least thirty (30) days' written notice
of any material change prior to renewal. If Licensee does not
accept a material change, Licensee may elect not to renew the
subscription, and the existing term will run to its natural end
date under the original terms.

For perpetual or multi-year licenses, this Agreement remains in
effect for the licensed term without unilateral modification.
Non-material changes (such as correction of typographical errors,
clarification of ambiguous language, or update of contact
information) may be published at any time and will be disclosed in
the document's version history.

Material changes include but are not limited to: changes to
license grant scope, license restrictions, liability caps,
indemnification obligations, termination rights, and governing
law or dispute resolution. Changes labeled as non-material by
DenseDefense remain subject to challenge by Licensee; in the
event of dispute, the version of this Agreement in effect at the
start of Licensee's then-current license term governs.

16.3 Severability

If any provision of this Agreement is held to be invalid, illegal,
or unenforceable by a court of competent jurisdiction, the remaining
provisions shall continue in full force and effect. The invalid
provision shall be modified to the minimum extent necessary to make
it valid and enforceable while preserving the parties' original
intent.

16.4 Waiver

The failure of either party to enforce any right or provision of
this Agreement shall not constitute a waiver of such right or
provision. Any waiver must be in writing and signed by the waiving
party.

16.5 Assignment

Licensee may not assign or transfer this Agreement or any rights or
obligations hereunder without the prior written consent of
DenseDefense. DenseDefense may assign this Agreement in connection
with a merger, acquisition, corporate reorganization, or sale of
all or substantially all of its assets. Any purported assignment in
violation of this section shall be void.

16.6 Force Majeure

Neither party shall be liable for any failure or delay in
performance due to causes beyond its reasonable control, including
but not limited to acts of God, natural disasters, pandemics, war,
terrorism, riots, government action, power failures, internet or
telecommunications failures, or cyberattacks.

16.7 Notices

All notices under this Agreement shall be in writing and delivered
by certified mail, nationally recognized overnight courier, or
email (with confirmed receipt) to the addresses specified in the
applicable order form. Notices to DenseDefense shall be directed to:
DenseDefense, DFW, Texas, Attn: Legal Department.

16.8 Independent Contractors

The parties are independent contractors. Nothing in this Agreement
creates a partnership, joint venture, agency, franchise, or
employment relationship between the parties.

16.9 Third-Party Beneficiaries

This Agreement is for the sole benefit of the parties hereto and
their permitted successors and assigns. Nothing in this Agreement
confers any rights upon any person or entity that is not a party to
this Agreement.

16.10 Headings

The section headings in this Agreement are for convenience of
reference only and shall not affect the interpretation of this
Agreement.

16.11 Counterparts

If this Agreement is executed as a standalone document, it may be
executed in counterparts, each of which shall be deemed an original
and all of which together shall constitute one and the same
instrument. Electronic signatures shall be deemed original
signatures for all purposes.

----------------------------------------------------------------------
Acceptance
----------------------------------------------------------------------

By installing, copying, downloading, or otherwise using the
Software, Licensee confirms acceptance of this End User License
Agreement. If Licensee does not agree to these terms, Licensee must
not install or use the Software and must promptly return or destroy
all copies.

==============================================================================
DenseDefense End User License Agreement v1.0 -- Effective April 3, 2026
DenseDefense -- DFW, Texas -- densedefense.com
Unauthorized reproduction or distribution is prohibited.
==============================================================================
