Capabilities How It Works Pricing Security Help & Support Log In Request Demo
Platform live — aptlyva.duckdns.org

Know your exposure.
Fix what matters.

Enterprise vulnerability management that tells your team what to fix, in what order — and shows your board you actually did it.

Request a Demo → Access Platform
4
Scanner Formats
4
CIS Benchmarks
3
Auth Backends
20+
Languages
5
Report Sheets
Scroll
Designed for security teams at
The Problem

Security teams are
drowning in data,
not insight.

01
Too many findings, no clear priority
Scanners return thousands of vulnerabilities. Without intelligent triage, teams waste cycles on low-risk findings while critical exposures sit open for months.
02
Reporting is manual and unconvincing
Security teams spend hours every month assembling spreadsheets for leadership. The result is stale data, inconsistent metrics, and boards that don't trust the numbers.
03
Compliance posture is a black box
Knowing whether your estate is CIS-compliant requires specialist scripts, manual effort, and days of work. Most teams find out they're non-compliant when auditors do.
Risk Dashboard
12
Critical
34
High
B+
Posture
P1 Urgent
85%
P2 This week
62%
Remediated
43%
7 SLA breaches Exploits flagged 3 internet-facing
📋
Report generated
5-sheet board pack · 2.4MB
The Solution

One platform.
Total visibility.

Vulnerability Analyser connects your scanning infrastructure, ranks every finding by real-world risk, and generates board-ready reports — automatically.

🎯
Risk-ranked from day one
Every finding is automatically scored by severity, exploit availability, and exposure. Your team always knows exactly what to tackle next.
📊
Board reports in one click
Generate a five-sheet executive report with posture grade, trend analysis, and action plan — in seconds, not days.
🛡️
Compliance without the pain
Run CIS benchmark assessments against your estate directly from the platform. Track compliance posture over time across every audit cycle.
Capabilities

Everything your
security team needs

From scan import to board presentation — vulnerability management that works the way security teams actually operate.

📥
Unified Scan Management
Import results from your existing scanners in any format. Every finding is automatically classified, scored, and enriched — no manual processing required.
CSV · Excel · HTML · PDF
🎯
Intelligent Prioritisation
Not all vulnerabilities are equal. Our scoring engine weighs exploit availability, internet exposure, and lateral movement risk to surface what actually matters.
P1 · P2 · P3 Tiers
📡
Live Scanning
Trigger and monitor vulnerability assessment scans directly from the platform against any host or network range. Results appear automatically on completion.
Nessus · Tenable.io · Tenable.sc
CIS Compliance Assessments
Run industry-standard CIS benchmark assessments against Linux and Windows hosts remotely. Track compliance posture trends across every audit cycle.
Ubuntu · RHEL · NGINX · Windows
🔄
Remediation Lifecycle
Track every finding from discovery to sign-off. Risk acceptances require a signed letter — creating a complete, auditable paper trail your auditors will love.
Audit Log · Risk Letters
📊
Management Reporting
One click generates a board-ready five-sheet Excel report: executive summary, risk dashboard, top findings, host risk breakdown, and remediation action plan.
Board-Ready · One Click
📦
Asset Intelligence
Auto-populated asset inventory from scan data. Classify by type, criticality, owner, and department using flexible rule-based tagging across your estate.
Auto-Tagged · Rule-Based
📈
Security Intelligence
Aging analysis, SLA tracking, scan-to-scan comparison, and trend reporting. Know how your posture is moving — and prove it to leadership with data.
Trend · Aging · Comparison
🔐
Enterprise Authentication
Connect your existing directory. LDAP, Active Directory, and RADIUS backends — all combinable with TOTP multi-factor authentication. AD users provisioned automatically.
LDAP · RADIUS · MFA
Process

Running in minutes,
not months

No professional services. No months-long implementation. Your team is operational the same day.

01
Connect
Import your scan data
Upload results from your existing scanner in any format, or connect your scanner directly for live assessment capability. Everything is automatically enriched and classified on ingest — no configuration required.
02
Prioritise
Focus on what actually matters
Every finding is ranked by real-world risk — not just CVSS score. Exploit availability, internet exposure, and lateral movement potential are factored into a single priority score that tells your team exactly where to start.
03
Track & Report
Prove progress to leadership
Track remediation from open to resolved with a full audit trail. Generate board-ready reports in one click. Show your security posture grade, trend over time, and what your team has fixed — in a format executives actually understand.
Pricing

Simple tiers,
no hidden fees

All tiers are self-hosted — your data stays on your infrastructure.

Entry
Standard
For small security teams getting started with structured vulnerability management.
Scan import (all formats)
Risk prioritisation
Management reporting
Asset inventory
5 business day support
Get Started
Most Popular
Professional
Pro
For security teams that need live scanning, compliance tracking, and faster response.
Everything in Standard
Live scanning integration
CIS compliance assessments
Scan comparison & trends
LDAP / AD authentication
3 business day support
Request Demo
Enterprise
Enterprise
For organisations with complex estates, compliance requirements, and SLA obligations.
Everything in Pro
MFA & RADIUS support
Risk Acceptance workflows
Full audit trail
24-hour critical SLA
Dedicated account support
Contact Sales
Multi-Tenant
Enterprise+
For MSSPs and consultancies managing multiple client environments from one instance.
Everything in Enterprise
Multi-client isolation
White-label ready
Custom branding
4-hour critical SLA
Partner pricing available
Contact Sales
All licences are HMAC-signed and tied to your deployment. Contact us for academic, government, or startup pricing.
Security Commitment

Your data never
leaves your walls

Vulnerability Analyser is fully self-hosted. No cloud dependency. No data leaving your infrastructure. Ever.

🏠
Fully Self-Hosted
Runs on your own servers. Your scan data, your findings, your reports — stored entirely within your infrastructure boundary.
🔐
Enterprise Authentication
Connect your existing Active Directory, LDAP, or RADIUS server. Users authenticate against your identity provider — not ours.
📋
Immutable Audit Trail
Every status change, risk acceptance, and access event is logged with user, timestamp, and context — and cannot be altered.
🛡️
Hardened by Design
TLS 1.2+ only, HSTS enabled, Content Security Policy, rate limiting, and no third-party analytics. Security is not an afterthought.
Testimonials

Trusted by security teams
who move fast

★★★★★
"We used to spend two days a month building the board report. Now it takes forty seconds. Leadership actually trusts the numbers now because they're consistent."
J
James R.
Head of Information Security · Financial Services
★★★★★
"The prioritisation engine is what sold it for us. Our previous tool gave us 4,000 findings with no triage. VA tells us the 12 things that will actually hurt us."
S
Sarah M.
Security Engineer · Healthcare Trust
★★★★★
"Running CIS assessments against 200+ servers used to take us weeks. We have full benchmark coverage now and compliance reports that our auditors actually accept."
A
Alex T.
CISO · Government Agency
Help & Support

Documentation & Support

Technical guides, deployment instructions, and direct access to our support team.

Getting Started
Core Features
Compliance
Security
Reference
🎫
Raise a Ticket
Submit a support ticket for technical issues, bugs, or questions. Our team reviews every submission and confirms by email.
All Licence Tiers
Response Times
First-response targets by tier and priority.
Standard · General5 business days
Pro · General3 business days
Enterprise · Critical24 hours
Enterprise+ · Critical4 hours
🔒
Security Disclosures
For responsible disclosure of vulnerabilities in the platform, select Security Advisory as the issue type. Handled with priority by our security team.
Submit a Support Ticket
Fields marked * are required. A reference number will be sent to your email.
Please enter your name
Valid email required
Please select an issue type
Please enter a subject
Please describe the issue
🔒 Submitted securely
Ticket Submitted
Your ticket has been received. Check your email for confirmation.
Submitted
2
Under Review
3
In Progress
4
Resolved
🔍
Check Ticket Status
Enter your support ticket or demo request reference number.

Ticket ref starts with VA- · Demo ref starts with DEMO-

Get Started

Request a live demo

Our team will walk you through the platform, answer your questions, and build a deployment plan for your environment — at no cost.

🔒 No commitment. We'll respond within 1 business day.
🎉
Demo request received

Our team will reach out within 1 business day to arrange a time that works for you.

Your reference: —