Entry-level coverage for teams beginning a structured security assessment program. Covers up to 10 hosts with monthly scan cadence.
- Up to 10 hosts
- Monthly scan cadence
- CVSS-scored findings report (PDF)
- Unauthenticated scan mode
- Remediation priority list
- Email delivery within 48 hrs of scan
Expanded coverage with bi-weekly scanning and credentialed assessments for a deeper view into authenticated vulnerabilities.
- Up to 50 hosts
- Bi-weekly scan cadence
- Credentialed + unauthenticated modes
- Executive summary + technical report
- Trend tracking between scan cycles
- Ticketing system integration
- Remediation validation re-scan
Enterprise-scale coverage with unlimited hosts, weekly scans, executive dashboards, and direct escalation for critical findings.
- Unlimited hosts
- Weekly scan cadence
- All Sentinel features included
- Executive-level dashboard access
- CRITICAL finding direct escalation
- Compliance mapping (SOC 2, HIPAA, PCI)
- Dedicated assessment engineer
| Feature | Recon | Sentinel | Fortress |
|---|---|---|---|
| Host count | Up to 10 | Up to 50 | Unlimited |
| Scan frequency | Monthly | Bi-weekly | Weekly |
| Credentialed scans | — | ✓ | ✓ |
| Executive summary | — | ✓ | ✓ |
| Trend tracking | — | ✓ | ✓ |
| Ticketing integration | — | ✓ | ✓ |
| Compliance mapping | — | — | ✓ |
| CRITICAL escalation | — | — | ✓ |
| Dedicated engineer | — | — | ✓ |
Structured patch intelligence without direct deployment. Receive classified patch reports and remediation guidance for your team to act on.
- Monthly patch classification report
- Risk-tiered remediation priorities
- Linux (Ubuntu, RHEL) and Windows
- CVE cross-reference for all findings
- Email delivery within 5 business days
Automated patch deployment via Ansible playbooks with change-window scheduling, pre-patch snapshots, and post-patch validation.
- All Advisory features included
- Ansible-driven automated deployment
- Change-window scheduling
- Pre-patch snapshot policy
- Rollback procedures on failure
- Post-patch validation reporting
- Patch history audit trail
SLA-backed patch governance with compliance documentation, dedicated engineering support, and ITSM workflow integration.
- All Managed features included
- Defined SLA for critical patches
- SOC 2 / HIPAA / PCI-DSS audit docs
- ITSM / ServiceNow integration
- Dedicated patch engineering lead
- Quarterly security posture review
| Feature | Advisory | Managed | Enterprise |
|---|---|---|---|
| Patch classification report | ✓ | ✓ | ✓ |
| Ansible deployment | — | ✓ | ✓ |
| Pre-patch snapshots | — | ✓ | ✓ |
| Rollback procedures | — | ✓ | ✓ |
| Audit trail | — | ✓ | ✓ |
| Defined SLA | — | — | ✓ |
| Compliance documentation | — | — | ✓ |
| ITSM integration | — | — | ✓ |
Open-source vulnerability scanner with 80,000+ network vulnerability tests. Used for unauthenticated and authenticated scan modes across Linux and Windows targets.
Industry-standard vulnerability assessment platform with plugin-based detection for CVEs, misconfigurations, compliance gaps, and malware indicators.
Agentless patch deployment via Ansible playbooks. The same automation backbone used to build PTG's hardened AMIs — proven, idempotent, and auditable.
Ready to start a security assessment?
Schedule a free 30-minute consultation. PTG will review your infrastructure and recommend the right scanning and patching tier for your environment.