Skip to main content

Managed Vulnerability Scanning

Managed GVM/OpenVAS Hosting

Enterprise vulnerability scanning for compliance-driven teams

License: GPL-2.0 GitHub: 4.4K stars Infra: 4–8 GB RAM, 2–4 vCPU, 40 GB+ storage

What is GVM/OpenVAS?

Greenbone Vulnerability Management (GVM) with OpenVAS is the world's most widely used open-source vulnerability scanner. It performs unauthenticated and authenticated testing across networks, identifying security weaknesses before attackers do.

Use cases

  • Vulnerability assessments for compliance-driven organizations
  • Regular infrastructure scanning for compliance audits
  • Pre-deployment security validation of new servers
  • Continuous vulnerability monitoring across network assets

Features

  • Network vulnerability scanning
  • Authenticated and unauthenticated scans
  • 80,000+ Network Vulnerability Tests (NVTs)
  • Scheduled and on-demand scanning
  • CVSS-based risk scoring
  • Compliance auditing (PCI DSS, CIS benchmarks)
  • REST API for automation
  • Detailed PDF and CSV reporting

Simple, transparent pricing

Same software, fraction of the cost.

Starter

Up to 32 IP targets

From $30 /mo
  • GVM + OpenVAS Scanner
  • Up to 32 IP targets
  • Community NVT feed
  • Weekly scheduled scans
  • Basic reports (PDF/CSV)
  • Daily backups
Contact us

Most popular

Business

Up to 256 IP targets

From $60 /mo
  • Everything in Starter
  • Up to 256 IP targets
  • Daily scheduled scans
  • Compliance profiles (PCI, CIS)
  • Trend analysis and delta reports
  • Priority support
Contact us

Enterprise

Unlimited IP targets

From $80 /mo
  • Everything in Business
  • Unlimited IP targets
  • Authenticated scanning
  • Custom scan configs
  • API access for CI/CD integration
  • SLA-backed uptime
Contact us

Every plan includes

Managed hosting

Dedicated bare-metal servers

Automated backups

Daily backups with 30-day retention

SSL included

Automatic HTTPS with Let's Encrypt

Monitoring

24/7 uptime monitoring and alerting

Compliance-ready hosting

Every managed deployment runs on EU infrastructure. Data Processing Agreement available on request. All services covered under a single DPA.

View compliance documentation →

Frequently asked questions

How many IP targets can I scan on each plan?

Starter supports up to 32 IP targets with weekly scheduled scans, Business up to 256 with daily scheduling, and Enterprise is unlimited with authenticated scanning and custom scan configurations.

What is the NVT feed and how often is it updated?

NVTs (Network Vulnerability Tests) are the detection scripts GVM runs against your targets. The community feed ships over 80,000 NVTs and we sync it automatically on all plans so your scans use current signatures.

Can I run authenticated scans to detect OS and application vulnerabilities?

Yes, on the Enterprise plan. Authenticated scanning uses SSH or SMB credentials to inspect installed packages and configurations, surfacing vulnerabilities that unauthenticated network scans miss.

Can GVM results feed into a CI/CD pipeline?

Yes, on Enterprise. GVM exposes a REST API you can call from a pipeline to trigger scans and retrieve results in XML or CSV format, enabling pre-deployment checks on new server images.

Ready to get started with GVM/OpenVAS?

Your instance is provisioned in minutes. No credit card required for a consultation.

Contact us