Open Source

How does your site score on cybersecurity?

Free external security scan mapped to Australian Essential Eight, Singapore Cyber Essentials, or global CIS Controls. Results in 30 seconds.

We check SSL, security headers, email security, and exposed services.  ·  Try an example →

Resolving domain...

Score:
Duration: s
Scanned:

    This covers your external posture.

    The full Essential Eight assessment scans 28 internal controls — application control, patching, macros, admin privileges, MFA, and backups. Run the open-source CLI scanner on your Windows environment.

    Get E8Mate CLI →
    🛡️

    External Posture Scan

    SSL, headers, email security, exposed services — assessed against the Essential Eight framework in seconds.

    🔍

    Full Internal Scanner

    28 checks across all 8 controls at Maturity Level 1. Application control, patching, macros, MFA, and more.

    📊

    Audit-Ready Reports

    Generate professional HTML reports with executive summary, remediation roadmap, and evidence for auditors.

    🇦🇺

    Essential Eight (AU)

    Aligned with ASD's Essential Eight Maturity Model. Mandatory for Australian government, recommended for all.

    Learn about the Essential Eight →
    🇸🇬

    Cyber Essentials (SG)

    Mapped to CSA's Cyber Essentials mark (SS 712:2025). The baseline for Singapore organisations.

    Learn about Cyber Essentials →
    🌏

    CIS Controls (Global)

    Mapped to CIS Critical Security Controls v8. Recognised worldwide as a cybersecurity best practices framework.

    Learn about the CIS Controls →
    For MSPs & Security Consultants

    Run compliance for every client from one dashboard

    The public scanner grades a single site. The Security8 console manages your whole book of business — track posture across clients, hand auditors branded reports, and close findings without a spreadsheet.

    🏢

    Client Portfolio

    Every organisation in one view — latest grade, maturity level, open findings, and last scan date. Set each client's framework and target maturity independently.

    🎨

    White-Label Reports

    Audit-ready PDFs carrying your logo and brand colour, not ours — executive summary, control-by-control detail, and a remediation roadmap.

    Remediation Tracker

    Findings become tracked items — open, in progress, resolved, or accepted risk — prioritised by severity so nothing slips between scans.

    🔁

    Repeat Scans & Trends

    Re-scan on demand across Essential Eight, Cyber Essentials, or CIS, and watch each client's grade move over time — not a one-off snapshot.

    Log in to the console Or run it self-hosted →
    Open source · multi-tenant · self-host it or ask about a managed account.