Network visibility you actually own
ProtoScan was built on a simple conviction: understanding and securing your network shouldn't require shipping a live map of your infrastructure to someone else's cloud.
Why ProtoScan exists
Most teams can't confidently answer a basic question: what's actually on our network right now? Devices appear and vanish, spreadsheets go stale the moment they're saved, diagrams drift out of date, and vulnerabilities sit unnoticed until they're exploited. The tools that promise to fix this usually come with a catch — agents on every machine, a per-device price tag, and a cloud account that ends up holding a complete blueprint of your network.
ProtoScan takes the opposite approach. It's a single, self-hosted application that autonomously discovers your network, draws a live topology, fingerprints every device, scans for vulnerabilities, and watches for outages — all from hardware you control. No agents. No cloud. No telemetry.
What we believe
- Your data stays yours. ProtoScan runs entirely on your server with an embedded database. Your topology, inventory and credentials never leave your network.
- Visibility shouldn't be metered. Every feature is included, with no device limits and no license keys. ProtoScan is free to download and self-host.
- Security is a default, not an upsell. Encrypted credentials, bcrypt-hashed logins, role-based access, rate limiting, CSRF protection and SSRF-guarded requests ship in the box.
- It should just work. One installer, a few minutes, and you're looking at a live map of your network.
Self-hosted
Runs as a single process with an embedded database on your own Linux server.
No telemetry
ProtoScan doesn't phone home. There's no analytics account watching your network.
Private by design
Credentials and API keys are encrypted at rest and never exposed in the browser.
What it does, in one breath
Discovery and fingerprinting over nmap, SNMP, LLDP, CDP and ARP. A live, interactive topology with an STP overlay. Continuous vulnerability scanning against the National Vulnerability Database. Smart alerting over Email, Slack and Discord. First-class integrations with UniFi, Cisco Meraki and Palo Alto. An in-browser SSH/Telnet console. And tracking for the domains, certificates and licenses that keep everything running. The full tour lives in the documentation.