NIS2 PlatformCompliance Scanning and Management

Open-source platform for scanning infrastructure against NIS2 Directive Art. 21 requirements.

Scanner

Checks ports, TLS versions and ciphers, HTTP security headers, DNS records (DNSSEC, SPF, DMARC, AXFR), WHOIS expiry, cookie flags, SRI, secrets in page source, sensitive file exposure, security.txt, WAF/CDN detection, and Italian legal requirements (P.IVA, privacy policy, cookie banner).

Dashboard

Next.js 15 frontend with pages for scans, assets, findings, compliance matrix, reports, schedules, team management, API keys, and settings.

Report Generation

Export scan results as PDF, JSON, or CSV. Reports are generated asynchronously via Celery workers and downloaded when ready.

Scheduled Scans

Set up recurring scans with cron expressions. Celery Beat dispatches scans on schedule. Compare findings between any two scans in an organization.

Multi-Tenant Organizations

JWT authentication with role-based access (admin, auditor, viewer). Data is isolated per organization.

NIS2 Art. 21 Compliance Matrix

Each scan produces a compliance_matrix mapping findings to NIS2 directive articles. The compliance page reads from the most recent completed scan.