{% if auth_enabled and username %}
👤 {{ username }} {{ role }}
{% if tenant_scoped %}🏢 {{ tenant }}{% endif %}
{% endif %}
{% if scheduler.enabled %}
⏱ Scheduled every {{ scheduler.interval_minutes }} min ({{ scheduler.profile }})
{% else %}
⏱ Scheduling off
{% endif %}
{% if can_scan %}{% endif %}
{% if auth_enabled and username %}
{% if has_account %}{% endif %}
{% if is_tenant_admin %}{% endif %}
{% if is_tenant_admin %}{% endif %}
{% if is_tenant_admin %}{% endif %}
{% if is_tenant_admin %}{% endif %}
{% if is_tenant_admin %}{% endif %}
{% if is_tenant_admin %}{% endif %}
{% if is_tenant_admin %}{% endif %}
{% endif %}
{% if can_scan %}
{% else %}
🔒 Read-only access — scanning requires an operator or admin role.
{% endif %}
Scan options:
Ready.
0%
Dashboard:
📑 Summary
🐳 Docker & Containers
📊 Interactive Charts
Pick a chart type per tile · drag the ⠿ handle to rearrange · drag a tile's bottom-right corner to resize
🖥️ OS Distribution⠿
🛑 Vulnerability Severity⠿
📈 Network Risk & Compliance⠿
📜 Regulatory Compliance⠿
🛑 Top Vulnerabilities & Changes
🛑 Top 10 Vulnerabilities
No scan data yet.
🔔 Recent Changes
No previous scan to compare against.
Assets
Software
Compliance
Certificates
Active Directory
Scan History
Remediation Tracking
Patch and Remedy
{% if can_scan %}{% endif %}
Asset ID
IP
Hostname
Type
OS
Software
Ports
Risk
Vulns
Groups
Host
Application / Software
Version
Service
Port
Asset ID
Host
Status
PCI DSS
GDPR
ISO 27001
SOC 2
HIPAA
Cyber Essentials
NIST CSF
NCSC CAF
Findings
Export
Host
Port
Subject
Issuer
Expires
Days left
Status
No Active Directory data yet. Run a scan with “AD / DC audit” enabled.
Loading…
{% if can_scan %}
{% endif %}
Track remediation activities against each asset. Items are tenant-separated — you only see and manage remediation for your own tenant's assets.
{% if can_scan %}
{% endif %}
{% if can_scan %}
{% endif %}
Asset ID
IP
Task
Priority
Status
Assignee
Due
Comments
Updated
🔧 Patch and Remedy
Apply operating-system updates and upgrades to scanned assets over SSH
(apt / dnf / yum / zypper / apk auto-detected). Optionally update Docker images instead.
Every run automatically creates and updates a Remediation Tracking item per asset,
and credentials are entered per run and never stored.
{% if can_scan %}
🔒 SSH and sudo credentials are never stored or logged — used only for this single patch run, then discarded.
🔒 Credentials are never stored or logged — used only for this single patch run, then discarded.
Scan this QR code with an authenticator
app (Google Authenticator, Authy, 1Password…), then enter the 6-digit code to confirm.
Can't scan? Secret:
Save these backup codes — each works once if you
lose your authenticator. They won't be shown again.
{% endif %}
{% if is_tenant_admin and auth_enabled %}
📋 Login & Activity Log
When
User
Tenant
Action
Detail
Client IP
Loading…
{% endif %}
⏱ Scheduled Scans
Loading…
Add schedule
Run on days:
At time::(local time, 24h)
or every(used when no days are ticked)
{% if is_tenant_admin and auth_enabled %}
🔗 Service-Desk Integrations
Connect Jira, ServiceNow or Zendesk so you can open a ticket for any CVE finding straight from the asset detail view.
Loading…
Add integration
📡 Synapse Sonar
Two-way vulnerability sync with Synapse Sonar. Push sends findings to Sonar; the Pull API lets Sonar fetch findings from this NetscanXi instance.
⬆ Send to Synapse Sonar (push)
Findings are POSTed to <API URL>/api/ingest/vulnerabilities using the API key Sonar issued for this instance.
⬇ Sonar Pull API (this NetscanXi's API)
This API originates from NetscanXi. Generate a key, then paste the Endpoint URL + key into Synapse Sonar's NetscanXi integration card so Sonar can actively sync findings from here.
🧠 Synapse Cortex
Send this instance's discovered asset inventory (asset ID, MAC, IP, device type, OS, software) to Synapse Cortex so its CMDB stays in sync with NetscanXi.
⬆ Send to Synapse Cortex (push)
Assets are POSTed to <API URL>/api/ingest/assets using the API key generated in Cortex's Admin → Integrations page.
🎫 Tickets in Synapse Cortex
Tickets are created on demand, one at a time: open the Remediation Tracking tab and click 🧠 Cortex Ticket on an item. Only the items you choose are sent — a ticket is created once per remediation item (matched by a stable reference id) and left alone on later sends, so work already done on it in Cortex is never overwritten.
⚙ Admin Settings
🗄 Data Retention Policy
Automatically prune old scan data to control database growth. The asset registry and audit log are always preserved.
🗂 Asset Groups
Create groups to organise assets (e.g. by site, owner or function). Groups are tenant-separated. Assign assets to groups from the Groups column on the Assets tab.