Everything you need to see
your network clearly
From a single agent command to a fully documented topology map. Here's exactly what Netscope does today, and where we're headed.
What the dashboard shows
An interactive topology map built from what the agent discovers on your network.
Core capabilities
All features listed below are live in the current Beta.
ICMP Network Discovery
The agent sweeps your subnet with non-intrusive ICMP probes, identifying every reachable host. Results appear in your dashboard within seconds.
Interactive Topology Map
Every discovered device is rendered as a node on an interactive canvas. Drag to reposition, click to annotate, zoom to explore.
Multiple Scan Boards
Create separate boards for different subnets, time periods, or network segments. Compare topologies and track changes over time.
Team Access
Invite colleagues to your organization. Everyone sees the same boards and can annotate devices — a shared source of truth.
API Key Management
Each agent authenticates with a bcrypt-hashed API key. Generate, name, and revoke keys from the dashboard — nothing stored in plaintext.
REST API
Everything the dashboard does, the API can do. Integrate topology data into your CMDB, monitoring stack, or custom tooling.
Up and running in minutes
From installation to a live network map — no complex configuration, no agents to manage at scale.
Install the Agent
Run a single command on any Linux, Windows, or macOS host on your network. No dependencies required — the agent binary is self-contained.
Auto-Discovery
The agent scans your network via ICMP, identifies every reachable device, and securely reports the topology to the Netscope API.
Visualize & Document
Open your interactive topology map in the dashboard. Annotate devices, create boards for different scan sessions, and share with your team.
Security by default
Network data is sensitive. Netscope is built with defense-in-depth: multiple layers of encryption, no plaintext secrets, minimal data collection.
- All data encrypted in transit (TLS 1.3)
- Device descriptions AES-256 encrypted at rest
- API keys bcrypt-hashed (cost 12) — never stored in plaintext
- Password reset tokens SHA-256 hashed before storage
- JWT access tokens (15 min) + refresh tokens (7 days)
- Rate limiting on all auth endpoints (5 req/min)
What we're building next
This is our public roadmap, shaped entirely by user requests. Items at the top are closest to shipping.
Install via apt, brew, or yum — with auto-update. One command, done. No manual downloads ever again.
CVE enrichment per discovered device, vulnerability detection, and per-host risk scoring right on the topology map.
RBAC across organizations, teams, and individual boards. Share specific topologies without exposing the full account.
PDF network reports, shareable read-only links, and embeddable topology views for documentation and audits.
Auto-import existing infrastructure from Kubernetes, Docker Compose, AWS VPC, Terraform state, and other standard formats.
Self-hosted version for air-gapped networks and compliance-sensitive environments. Your data never leaves your infra.
Help us prioritize
Every item on this roadmap was shaped by user feedback. Tell us what matters most to your workflow — requests that come up repeatedly move to the top.
Read directly by the team — no ticket system, no auto-reply, no third-party tool.
Start mapping your network today
Install the agent, discover your devices, and get an interactive topology map — in under 2 minutes. No credit card required.