AI-Driven Network Defense

AI-Powered Network Security Audits Without Data Exposure.

NSAuditor AI is an open-core, AI-powered network security audit platform — the modern successor to our classic network security auditor for Windows. Run a full network security audit with verified vulnerabilities, MITRE ATT&CK mapping, and six-framework compliance evidence — SOC 2 (AICPA TSC), HIPAA §164.312, NIST CSF 2.0, PCI DSS v4.0.1, ISO/IEC 27001:2022, and CIS Critical Security Controls v8 — running entirely on your infrastructure. Your data never touches our servers.

Explore NSAuditor AI → Windows Desktop Suite
55 Scanner Plugins 6 Frameworks SOC 2 · HIPAA · NIST · PCI DSS · ISO 27001 · CIS v8 Zero Data Exfiltration MIT Open Core
nsauditor-ai — scan
$ nsauditor-ai scan --host 10.0.0.0/24 --plugins all --compliance soc2,hipaa,nist-csf,pci-dss,iso-27001,cis-v8
Initializing AI core... [OK]
Scanning 254 hosts · 55 plugins (parallel: 10)…
Critical Vulnerability Found CVE-2024-3321
Mapping to MITRE ATT&CK · SOC 2 CC6.1 · HIPAA §164.312(a) · NIST CSF PR.AC-1 · PCI DSS Req 8.4.1 · ISO 27001 A.8.5 · CIS Safeguard 6.5
Initial Access
Lateral Movement
● 4 evidence packs generated… 87% SECURE
Engineered for precision

What NSAuditor AI ships

An open-core scanner with verification, intelligence, and hexa-framework compliance evidence — SOC 2, HIPAA, NIST CSF 2.0, PCI DSS v4.0.1, ISO/IEC 27001:2022, and CIS Critical Security Controls v8 — built so your audit trail holds up to a CPA-firm review, a QSA RoC walkthrough, an ISO Stage 2 assessment, and a CIS-CAT self-attestation.

Verified Vulnerabilities

Safe non-destructive probes confirm whether a finding is real. Each issue is tagged VERIFIED, POTENTIAL, or FALSE_POSITIVE — no version-string guessing.

Learn more →

MITRE ATT&CK Mapping

Findings are mapped to MITRE ATT&CK techniques with kill-chain context, so you can show your CISO what an attacker would actually do — not just CVE noise.

See the mapping →

Hexa-Framework Compliance

One scan produces six auditor-ready evidence packs: SOC 2 (AICPA TSC 2017), HIPAA §164.312 Technical Safeguards, NIST CSF 2.0, PCI DSS v4.0.1 (sub-requirement-level for QSA RoC; Defined-vs-Customized Approach per Appendix E), ISO/IEC 27001:2022 (per-Annex-A-code with Statement of Applicability discipline), and CIS Critical Security Controls v8 (per-Safeguard with the Implementation Group cumulative discipline — IG1 cyber-insurance baseline / IG2 / IG3; no-certification-body attestation via CSAT / CIS-CAT Pro). RFC 3161 timestamps, SHA-256 chain-of-custody, Vanta push. Zero BAA required.

View Enterprise compliance →
The fundamentals

What is a network security audit?

A network security audit is a systematic review of your network — hosts, ports, services, configurations, and cloud accounts — to find vulnerabilities, misconfigurations, and compliance gaps before an attacker does.

NSAuditor AI runs that audit locally: it discovers live hosts and services, confirms real vulnerabilities with safe, non-destructive probes, maps each finding to MITRE ATT&CK, and generates auditor-ready evidence for six frameworks — SOC 2, HIPAA, NIST CSF 2.0, PCI DSS v4.0.1, ISO/IEC 27001:2022, and CIS Controls v8 — from a single scan. Unlike SaaS scanners, every step runs on your own infrastructure, so a complete network security audit happens with zero data exfiltration.

Need cloud coverage? NSAuditor AI Enterprise extends the audit across AWS, GCP, and Azure with the full hexa-framework compliance engine, air-gapped deployment, and continuous monitoring (CTEM).

Three editions

Free, Pro, and Enterprise

Start with the MIT-licensed Community Edition. Upgrade only when you need verification, compliance evidence, or cloud scanners.

Community
Free · MIT
27 Community plugins · forever free · no signup
  • Full scanner plugin set
  • AI analysis (your API keys)
  • CTEM watch mode
  • JSON · HTML · SARIF · CSV
  • MCP server for AI agents
npm install -g nsauditor-ai
Pro
$39/mo · billed annually
CVE matching, verification, intelligence-enriched AI
  • Offline CVE matching (NVD)
  • Parallel analysis agents
  • Verified vulnerabilities (safe probes)
  • Risk scoring + prioritization
  • Branded PDF reports
  • 9 Pro MCP tools
View Pro pricing →
Enterprise
$2k+/yr · 3 tiers
28 EE cloud plugins · hexa-framework compliance · air-gapped
  • 55 plugins (27 CE + 28 EE — AWS · GCP · Azure)
  • Hexa-framework compliance — one scan, six evidence packs
  • SOC 2 (AICPA TSC 2017) — 10/4/33
  • HIPAA §164.312 — 7/3/45 · Zero BAA
  • NIST CSF 2.0 — 13/10/83 subcategories
  • PCI DSS v4.0.1 — 20/8/39 sub-requirements (MVP-67)
  • ISO/IEC 27001:2022 — 17/14/62 Annex A controls
  • CIS Controls v8 — 17/22/114 Safeguards
  • Docker isolation · Air-gapped deployment
  • Dedicated SLA · Vanta GRC connector
Enterprise tiers →
Award-winning Windows tools

The classic NSAuditor desktop suite

Long-standing desktop product line for network auditing, key recovery, password recovery, and inventory management. Trusted by thousands of administrators.

All desktop tools →

Network Security Auditor

Comprehensive network auditing, vulnerability scanning, and monitoring for Windows.

Learn more →

Product Key Explorer

Find, backup, and recover product keys for 10,000+ popular software programs.

Learn more →

Password Recovery

Reveal forgotten passwords across major web browsers on Windows and macOS.

Learn more →

Hardware & Software Inventory

Agentless reports on installed hardware and software across enterprise subnets.

Learn more →