Find real vulnerabilities. Keep every byte.
NSAuditor AI by Nsasoft US LLC is an open-source AI-powered network security scanner with zero data exfiltration. 55 plugins (27 Community + 28 Enterprise), offline CVE matching, multi-cloud auditing across AWS, Azure, and GCP, and air-gapped enterprise deployment. Runs entirely on your infrastructure — your scan data, findings, and reports never touch our servers.
Zero data exfiltration, verifiable
Run strace -e trace=connect or tcpdump while scanning — the only outbound connections are to the targets you specified. No analytics SDK, no error reporting service, no “anonymized telemetry”. License validation is offline JWT.
How it works
- Install in 30 seconds —
npm install -g nsauditor-ai. macOS, Linux, Windows. No SaaS account.
- Scan from your terminal —
nsauditor-ai scan --host 10.0.0.0/24. 55 plugins run in parallel. CVE matching + safe verification probes on Pro.
- Ship the report — executive PDF, JSON, SARIF, or branded HTML. Findings classified VERIFIED · POTENTIAL · FALSE_POSITIVE.
Hepta-framework compliance from one scan
SOC 2 (AICPA TSC 2017) · HIPAA §164.312 · NIST CSF 2.0 · PCI DSS v4.0.1 · ISO/IEC 27001:2022 · CIS Controls v8 · GDPR Article 32. One --compliance flag, seven auditor-ready evidence packs.
Pricing
- Community — Free forever, MIT-licensed. 27 plugins. npm install -g nsauditor-ai
- Pro — $39/mo billed annually ($470/yr), or $49/mo billed monthly. CVE matching, verified vulnerabilities, executive PDF reports.
- Enterprise — From $2,000/yr. 28 EE cloud plugins (AWS · GCP · Azure), hepta-framework compliance, air-gapped deployment, PostgreSQL backend, dedicated support.
For developers
- Getting started — new Enterprise customers: install, activate, configure cloud credentials, run your first audit, and scope it with --aws-region.
- Documentation — quick start, architecture, plugin SDK, compliance evidence, MCP integration, air-gapped deployment.
- GitHub — MIT-licensed core. Read it, fork it, ship it.
- MCP integration — run NSAuditor AI as an MCP server. Hook it into Claude Code, Cursor, or any MCP-aware client.
From the field
“We replaced two SaaS scanners and saved $14k/yr. The ‘no telemetry’ promise actually held up under packet capture — that was the deciding factor for our SOC 2 audit.” — Director of Security, Series B fintech.
“NSAuditor AI runs in our air-gapped OT lab. Offline JWTs, offline NVD, offline AI via Ollama. Zero outbound, zero excuses.” — Principal Engineer, energy utility, IEC 62443 program.
About Nsasoft US LLC
Nsasoft US LLC builds NSAuditor AI — a local-first, AI-powered network and cloud security scanner with Zero Data Exfiltration, so customer data never leaves their environment. Used by MSPs, MSSPs, and compliance consultancies to power client assessments, and by mid-market teams in healthcare, finance, government, and critical infrastructure that need continuous evidence for SOC 2, HIPAA, PCI DSS, ISO 27001, and NIST CSF. Headquartered at 732 S 6th St, Suite R, Las Vegas, NV 89101. Contact: support@nsasoft.us · sales@nsasoft.us · +1-702-625-0401.
This page requires JavaScript for the full interactive experience.
Direct links: NSAuditor AI,
Pricing,
Docs,
GitHub,
SOC 2,
Partners.