We're building an automated pre-audit that shows where you stand with ISO 27001, NIS2, SOC 2 and GDPR — in 30 minutes. Right now we're looking for 5–10 companies to test for free and give feedback.
For the external attack surface: we scan from outside. For internal networks: you run a Docker agent yourself — no data leaves your environment until you review the results.
Become a beta tester → How it worksFree during beta. No obligations.
The same tools enterprise consultants use — currently available free for beta testers.
Open ports, exposed services, TLS configuration, HTTP headers, CVE correlation.
SPF, DKIM, DMARC, DNSSEC, MX hygiene, dangling DNS — what phishers look for first.
Repo permissions, branch protection, exposed secrets, stale tokens, 2FA compliance.
Secret detection, SAST (semgrep), IaC misconfigs (checkov) — on your own codebases.
Every finding maps to exact requirements in ISO 27001, NIS2, SOC 2, GDPR, PCI DSS, CIS v8.
Upload your policies — AI breaks them down and shows exactly where you have coverage and where there are gaps.
Included in betaDocker agent you run in your own VLAN. ARP discovery, AD/LDAP, cross-VLAN segmentation testing, patch levels. Air-gap safe — JSON results reviewed locally before upload.
Included in beta · NIS2-readyWe're looking for 5–10 companies. Completely free, no obligations.
Become a beta tester →