Managed Vulnerability Scanning
Managed GVM/OpenVAS Hosting
Enterprise vulnerability scanning for compliance-driven teams
What is GVM/OpenVAS?
Greenbone Vulnerability Management (GVM) with OpenVAS is the world's most widely used open-source vulnerability scanner. It performs unauthenticated and authenticated testing across networks, identifying security weaknesses before attackers do.
Use cases
- Vulnerability assessments for compliance-driven organizations
- Regular infrastructure scanning for compliance audits
- Pre-deployment security validation of new servers
- Continuous vulnerability monitoring across network assets
Features
- Network vulnerability scanning
- Authenticated and unauthenticated scans
- 80,000+ Network Vulnerability Tests (NVTs)
- Scheduled and on-demand scanning
- CVSS-based risk scoring
- Compliance auditing (PCI DSS, CIS benchmarks)
- REST API for automation
- Detailed PDF and CSV reporting
Simple, transparent pricing
Same software, fraction of the cost.
Starter
Up to 32 IP targets
- GVM + OpenVAS Scanner
- Up to 32 IP targets
- Community NVT feed
- Weekly scheduled scans
- Basic reports (PDF/CSV)
- Daily backups
Most popular
Business
Up to 256 IP targets
- Everything in Starter
- Up to 256 IP targets
- Daily scheduled scans
- Compliance profiles (PCI, CIS)
- Trend analysis and delta reports
- Priority support
Enterprise
Unlimited IP targets
- Everything in Business
- Unlimited IP targets
- Authenticated scanning
- Custom scan configs
- API access for CI/CD integration
- SLA-backed uptime
Every plan includes
Managed hosting
Dedicated bare-metal servers
Automated backups
Daily backups with 30-day retention
SSL included
Automatic HTTPS with Let's Encrypt
Monitoring
24/7 uptime monitoring and alerting
Compliance-ready hosting
Every managed deployment runs on EU infrastructure. Data Processing Agreement available on request. All services covered under a single DPA.
Frequently asked questions
How many IP targets can I scan on each plan?
Starter supports up to 32 IP targets with weekly scheduled scans, Business up to 256 with daily scheduling, and Enterprise is unlimited with authenticated scanning and custom scan configurations.
What is the NVT feed and how often is it updated?
NVTs (Network Vulnerability Tests) are the detection scripts GVM runs against your targets. The community feed ships over 80,000 NVTs and we sync it automatically on all plans so your scans use current signatures.
Can I run authenticated scans to detect OS and application vulnerabilities?
Yes, on the Enterprise plan. Authenticated scanning uses SSH or SMB credentials to inspect installed packages and configurations, surfacing vulnerabilities that unauthenticated network scans miss.
Can GVM results feed into a CI/CD pipeline?
Yes, on Enterprise. GVM exposes a REST API you can call from a pipeline to trigger scans and retrieve results in XML or CSV format, enabling pre-deployment checks on new server images.
Ready to get started with GVM/OpenVAS?
Your instance is provisioned in minutes. No credit card required for a consultation.
Contact us