The workflow stays connectedfrom inventory to evidence.
NoxScan keeps assets, scans, verified findings, schedules, and PDF reports in one operating surface so your team can move from discovery to handoff without rebuilding context.
See monitored assets, new discoveries, and review state in one inventory.
Keep domains, ranges, and discovered services in one searchable inventory so you can tell what is covered before you ever open the findings queue.
Search domains, IP ranges, and discovered HTTP services from one list.
See monitored, new, and queued assets at a glance.
Add assets in bulk without leaving the same workflow.
Assets
Manage your monitored IPs and domains
New
Queued
Scanning
Scanned
Failed
Open a completed run and review every result without leaving the workflow.
Completed scans keep insight counts, asset tabs, severity filters, and detailed findings on one results page so you can audit coverage without stitching data together by hand.
Review total assets, severity counts, and run duration at the top of every scan.
Switch between IP and domain assets without leaving the result screen.
Open individual findings directly from the run that produced them.
Scan # 67
Started: Mar 25, 2026 at 23:52
Total assets
1
High insights
0
Medium insights
2
Low insights
18
Duration
00:08:38
scanme.nmap.org
nmapOpen a finding and keep remediation, evidence, and references attached.
The detail view keeps description, remediation guidance, affected target, raw evidence, and reference links attached to the verified issue so analysts can act without rebuilding context.
See severity, CVSS, and CVE context before you leave the queue.
Review remediation, evidence, and HTTP transaction details in one place.
Keep canonicalized variants and reference links attached to the same issue.
OpenSSH Terrapin Attack - Detection
Open a verified finding and review description, remediation, evidence, HTTP transaction, and references without losing queue context.
Severity
CVSS
Affected URL
References
The SSH transport protocol with certain OpenSSH extensions can allow attackers to bypass integrity checks and downgrade session security. The detail view keeps the description attached to the verified finding instead of pushing analysts into a separate knowledge base.
const m = require("nuclei/ssh");
const c = m.SSHClient();
const response = c.ConnectSSHInfoMode(Host, Port);
function SupportsChaCha20() {
const ciphersClientServer = response.ServerKex.CiphersClientServer;
return ciphersClientServer.includes("[email protected]");
}Vulnerable to Terrapin
Vulnerable to Terrapin
Variant 1 scanme.nmap.org:22 Request -> OpenSSH extension negotiation Response -> Vulnerable to Terrapin
Disable the affected chacha20-poly1305 and etm MAC combinations, or use unaffected algorithms such as AES-GCM until the SSH service is upgraded.
scanme.nmap.org:22
Vulnerable to Terrapin
Keep daily and weekly cadence visible before coverage slips.
Schedules, next execution times, and last runs stay visible to the same people who review results, so missed cadence does not stay hidden in background jobs.
See daily and weekly schedules in the same surface.
Review next execution and last run side by side.
Catch missed cadence before it becomes an audit gap.
Scan schedules
Keep exposure telemetry current with daily and weekly automations that stay visible to the same operators.
Total schedules
Active
Running today
This week
Turn completed runs into evidence you can hand over.
PDF reports stay attached to the scan and verified findings behind them, so audit handoff does not depend on a separate reporting workflow.
Generate PDF evidence directly from completed runs.
Keep report history next to the scans that produced it.
Hand over reports that trace back to scope and date.
Security reports
Generate audit-ready evidence, download exports, and keep each report tied to its originating scan.
Total reports
PDF reports
Data exports
Control-mapped
Start scanning every port from one workflow.
Use the same connected surfaces for assets, scans, findings, schedules, and reports from your first asset onward.