EDGAR Scanner

Know Your Network Before Someone Else Does

Network asset discovery and vulnerability scanning for compliance professionals. Integrated with EDD-i v2 for automated inventory management. Because you can't protect what you don't know exists.

Request Demo View on GitHub

The Asset Visibility Problem

❌ Manual Network Audits

  • Spreadsheets updated quarterly (if you're lucky)
  • Shadow IT devices invisible to security
  • Hours of manual SSH/RDP connections
  • Credentials stored in sticky notes
  • Compliance auditors asking "what else is out there?"
  • Zero visibility between audit cycles

✅ With EDGAR Scanner

  • Automated discovery on demand or scheduled
  • Find everything: servers, workstations, IoT, cloud
  • SSH, WinRM, nmap - one tool handles all
  • Encrypted credential vault built-in
  • Auto-sync with EDD-i compliance platform
  • Continuous monitoring and drift detection

Scanner Capabilities

🔍

Multi-Protocol Discovery

nmap for network-wide sweeps. SSH for Linux/Unix systems. WinRM for Windows environments. One tool, every protocol.

🗝️

Secure Credential Storage

AES-256 encrypted credential vault. Support for SSH keys, passwords, and certificates. Role-based access control. No plaintext credentials anywhere.

🔗

EDD-i Integration

Native integration with EDD-i v2 compliance platform. Automatic asset inventory sync. Vulnerability data feeds into compliance reports. One source of truth.

📊

Comprehensive Asset Data

OS versions, patch levels, installed software, open ports, running services, hardware specs. Everything auditors ask for in one scan.

⏱️

Scheduled Scanning

Daily, weekly, or on-demand scans. Off-hours scheduling to minimize impact. Automatic baseline updates. Drift detection alerts.

🎯

Smart Target Scoping

CIDR notation, IP ranges, CSV imports, or manual entry. Exclude ranges for sensitive systems. Save scan profiles for repeated audits.

🛡️

Vulnerability Detection

CVE mapping for discovered software. Outdated OS detection. Open port risk assessment. Prioritized remediation lists.

📈

Compliance Reporting

Export to CSV, JSON, or directly to EDD-i. NIST 800-171, CMMC, SOC 2 report templates. Auditor-friendly formatting.

Technical Architecture

Scanning Engine

Python 3.8+ nmap paramiko (SSH) pywinrm (WinRM)

Security

AES-256 Encryption Credential Vault SSH Key Auth RBAC

Data Processing

Asset Normalization CVE Mapping JSON Export CSV Reports

Integration

EDD-i API REST APIs Webhook Support SIEM Integration

Scanning Workflow

1

Define Scope

Enter target networks using CIDR notation (e.g., 192.168.1.0/24) or import from CSV. Set exclusions for critical systems. Save scan profiles for recurring audits.

2

Configure Credentials

Add credentials to the encrypted vault. SSH keys for Linux, WinRM credentials for Windows. Domain authentication supported. Credentials never stored in plaintext.

3

Execute Scan

Choose scan depth: Quick (port scan only), Standard (OS detection), or Deep (full software inventory). Schedule for off-hours or run immediately. Progress tracked in real-time.

4

Review & Remediate

Review discovered assets. Prioritize vulnerabilities by risk score. Export to EDD-i for compliance tracking. Generate reports for management or auditors.

Who Uses EDGAR Scanner?

🏢 IT Departments

The Problem: "What's actually on our network?" Shadow IT, forgotten devices, unpatched servers.
The Solution: Automated discovery finds everything. Continuous monitoring prevents drift.

  • Save 20+ hours/month on manual inventory
  • Find 30-40% more assets than manual audits
  • Identify vulnerabilities before attackers do

🔒 Compliance Teams

The Problem: NIST 800-171, CMMC, SOC 2 require complete asset inventories. Manual processes don't scale.
The Solution: Automated scans feed directly into EDD-i compliance platform. Auditor-ready reports on demand.

  • Pass asset inventory audits with confidence
  • Demonstrate continuous monitoring
  • Generate reports in minutes, not weeks

🛡️ Security Operations

The Problem: Can't defend what you can't see. Attackers find your blind spots faster than you do.
The Solution: Continuous scanning provides attack surface visibility. Integration with SIEM for security event correlation.

  • Reduce attack surface exposure
  • Prioritize patching with CVE data
  • Detect unauthorized devices instantly

💼 MSPs & Consultants

The Problem: Every client network is different. Manual discovery during assessments wastes billable hours.
The Solution: Multi-tenant credential vault. Save scan profiles per client. Rapid assessment capabilities.

  • Complete network assessments in hours
  • Deliver professional reports automatically
  • Increase revenue per engagement

Compliance Framework Support

NIST 800-171

3.4.1 - Establish and maintain baseline configurations
3.11.2 - Scan for vulnerabilities in systems and applications

CMMC 2.0

Asset Management (Level 1+)
Configuration Management (Level 2+)
Vulnerability Management (Level 2+)

SOC 2

CC6.1 - Logical and physical access controls
CC7.1 - System monitoring for anomalies
CC8.1 - Change management procedures

ISO 27001

A.8.1 - Asset inventory and ownership
A.12.6 - Technical vulnerability management
A.18.2 - Compliance with security policies

Seamless EDD-i Integration

🔄 Automatic Sync

Discovered assets automatically populate EDD-i inventory. No manual data entry. Single source of truth for compliance.

📊 Unified Reporting

Asset data feeds compliance scorecards. Vulnerability findings trigger workflow tasks. Everything linked in one platform.

🎯 Gap Analysis

Compare discovered assets against documented inventory. Find unauthorized devices. Identify missing security controls.

⚡ Audit Readiness

Generate complete asset reports on demand. Show continuous monitoring evidence. Demonstrate control effectiveness.

Ready to Know Your Network?

Discover what's really on your network - before auditors (or attackers) ask

Request Demo Learn About EDD-i Integration

Need custom scanning solutions? Let's talk