Open-AudIT for Defence

Your Restricted Networks Can't Afford Blind Spots.

Classified and air-gapped environments don't leave room for error. Open-AudIT gives defence IT teams a complete, continuously updated inventory of every asset on restricted and disconnected networks—hardware, software, firmware—with no cloud connectivity required and no reliance on manual processes.

Trusted by organisations worldwide

NASARaytheon TechnologiesL3Harris TechnologiesPegaTelmex
Open‑AudIT secure network inventory dashboard for defence environments

Network dashboard showing asset discovery results across multiple classified sites and Active Directory environments.

Air-Gapped & Offline Deployment
Fully on-premises. Open-AudIT doesn't require internet access, doesn't push data to any cloud service, and doesn't phone home. Everything stays inside your network boundary, including in classified and disconnected environments.
Agentless & Agent-Based Discovery
Scan via SNMP, SSH, and WMI without touching endpoints. Where you need deeper data, lightweight agents run on Windows, Linux, and Unix systems and feed results back to the same inventory.
Rogue & Unauthorised Device Detection
When a device appears on the network that isn't in your approved inventory, Open-AudIT flags it. Rogue hardware, an unregistered endpoint, an unexpected SNMP device—you'll know about it without waiting for a scheduled audit.
DISA-STIG, NIST & CMMC Compliance Reporting
Pull compliance reports mapped to DISA-STIG, NIST 800-171, CMMC, and ACSC ISM. Everything is structured and exportable, ready for internal governance reviews or external auditors who want evidence, not a verbal summary.
Immutable Change & Configuration Audit Trail
Every hardware, software, and configuration change is logged with a timestamp. When something changes unexpectedly, you have a full record—what it was, what it changed to, and when it happened.
Role-Based Access Control
Scope access by unit, site, or classification level so each team only sees what they're cleared for. Every access event is logged, which matters when oversight bodies come asking.

Use Cases

Where Defence Teams Deploy It.

Defence IT teams use Open-AudIT across a range of scenarios—from routine network oversight to preparing evidence packs for formal compliance audits. A few of the most common ones are below.

Continuous Asset Inventory

Maintain a continuously updated inventory of every device on your restricted networks—endpoints, servers, network gear, everything. When a new asset appears or something changes, it's captured automatically rather than waiting for the next scheduled audit.

Rogue Device Response

When an unrecognised device appears on the network, Open-AudIT flags it. Change detection runs continuously, so your team has the information it needs to investigate quickly rather than discovering the problem in a post-incident review.

Compliance Evidence Generation

Run the compliance report, export the evidence pack, hand it over. Open-AudIT maps your current environment to DISA-STIG, CMMC, and NIST 800-171—so you're not spending weeks pulling data together manually every time an audit cycle comes around.

See compliance features →

Configuration Baseline Enforcement

Set a configuration standard. Open-AudIT compares every device against it and shows you what's drifted. Useful for maintaining hardening requirements across a fleet and catching deviations before they become a compliance finding.

Learn about baselines →

Hardware Lifecycle & Refresh Planning

Open-AudIT tracks firmware versions, hardware age, and warranty status across your fleet. When a refresh cycle comes around, you have the data to support the case—and you're not running unsupported equipment you didn't know was there.

Multi-Site Operational Visibility

Deploy collectors across multiple sites, bases, or agencies and pull the data into one view. You get a complete picture of what's running across your entire estate without needing to be on-site at each location.

Frequently Asked Questions

Does Open-AudIT work in fully air-gapped or classified environments?

Yes. Open-AudIT is fully self-hosted and has no cloud dependency at all. It runs entirely within your network perimeter, including classified and disconnected environments. No data leaves the boundary, and no internet access is required to scan, audit, or report.

What compliance frameworks does Open-AudIT support?

Open-AudIT supports DISA-STIG, NIST 800-171, CMMC, ACSC ISM, Essential Eight, and CIS Controls. Compliance reports are structured and exportable, ready for both internal governance reviews and external auditors.

Does the product send any data to the cloud?

No. Open-AudIT runs on your own infrastructure and does not transmit data externally. There are no cloud components, no telemetry, and no external API calls. Your asset data stays where you put it.

Can Open-AudIT scan without installing agents on endpoints?

Yes. Open-AudIT discovers devices agentlessly via SNMP, SSH, and WMI. Where you need deeper audit data, lightweight agents are available for Windows, Linux, and Unix, but they are optional.

“[Customer quote placeholder — replace with a real testimonial from a defence sector customer.]”

— [Name], [Role], [Organisation]

See How It Works in a Restricted Environment

Schedule a conversation with the team to walk through how Open-AudIT handles classified networks, air-gapped deployments, and compliance reporting.

Schedule an Install CallDownload Open-AudIT