•    Flexible reporting - customize reports by vulnerability or device, generate a summary for the Management or compare the results of different scans to highlight changes; standard .xml, .pdf, .html or .csv
•    Targeted email notifications of scan results, recommendations for corrective actions and improvements to scan configuration.

• •    Precise and efficient detection of resources
  •    Vulnerability scanning (including IPv4, IPv6, hybrid networks)
  o    vulnerability detection without authentication
  o    authenticated scanning to seal systems and detect missing patches
  •    Wide range of resources and profiling capabilities:
  o    network devices: firewalls, routers, switches (e.g. Juniper, Cisco, Palo Alto, Check Point), printers, network drives
  o    configuration of offline audits of network devices
  o    virtualization: Vmware ESX, ESXi, vSphere, vCenter, Microsoft, Hyper-V, Citrix Xen Server
  o    operating systems: Windows, OS X, Linux, Solaris, FreeBSD, Cisco iOS, IBM iSeries
  o    databases: Oracle, SQL Server, MySQL, DB2, Informix/DRDA, PostgreSQL, MongoDB
  o    web applications: web servers and services, OWASP vulnerabilities
  o    cloud: scanning application configuration and instances in clouds such as Salesforce or AWS
  o    meets PCI DSS requirements through the ability to configure a dedicated audit
  •    Threats: botnets, malicious processes, audits of antivirus systems
  o    finding viruses, malware, vulnerabilities, communication of devices with infected systems, audits of known and unknown processes and websites related to malicious content
  o    compliance audit with: FFIEC, FISMA, CyberScope, GLBA, HIPAA/HITECH, NERC, PCI, SCAP, SOX, GIODO
  o    audit configuration: CERT, CIS, COBIT/ITIL, DISA STIGs, FDCC, ISO, NIST, NSA
  •    Audits of industrial automation systems: SCADA systems, embedded devices and ICS applications
  •    Audits of sensitive content: personal data (e.g. payment card numbers, PESEL, etc.)

•    Implementation flexibility - software, hardware, virtual device can be run at the customer's premises or in Netia's cloud.
•    Scan options (possible types of scans) - remote scanning without authentication or with authentication - local scans for deeper and more detailed analysis of resources connected to the network, temporarily disconnected or remotely accessible
•    Scan configuration and policies - predefined policies and configuration patterns
•    Risk Assessment - vulnerability rating based on CVSS (Common Vulnerability Scoring System), five severity levels (Critical, High, Medium, Low, Informative)
•    Prioritization - correlation with data from exploit databases (Metasploit, CoreImpact, Canvas, ExploitHub) and filtering according to the probability of exploitation of the vulnerability and its vulnerability
•    Extensibility - integration with existing vulnerability management paths using RESTful API support