COMGUARD Vulnerability Management Service (Management zranitelností sítě) is a network, web application, and database vulnerability management service offered by Czech cybersecurity distributor COMGUARD a.s. The service is available in two forms: - One-time vulnerability assessment of networks, web applications, and databases - Long-term, ongoing vulnerability management including patch management support Scanning is performed using a dedicated probe that detects live IP addresses, open ports, running services, and their associated vulnerabilities. Results are delivered in consolidated reports that include severity ratings and remediation sources. Assessments can be configured as intrusive or non-intrusive, blackbox or whitebox, and internal or external in scope. The service can be used to fulfill requirements of ISMS (ISO/IEC 27001), the Czech Cybersecurity Act, risk management processes, or as part of penetration testing. It can also be combined with data flow analysis for a multi-layered view of network infrastructure security. The scanning probe supports: - Over 450 OS variants including Microsoft Windows, UNIX, Cisco, Android, Linux, Apple, Apple iOS, Macintosh, and VMware - Web application scanning per OWASP Top 10 and CWE Top 25 - Vulnerability and malware detection in products from Adobe, AOL, Apple, Microsoft (Office, IIS, Exchange), Cisco, Citrix, Oracle, SAP, VMware, and others - Database platforms: DB2, MySQL, Oracle, Microsoft SQL Server, and Sybase Supported compliance standards and frameworks include ISO/IEC 27002, PCI DSS, HIPAA, SOX, FISMA, GLBA, NIST SP 800-68, SANS Top 20, COBIT, CVE, CVSS, OVAL, DISA STIG, and CIS-certified audits. The probe holds Common Criteria certification and FIPS-140-2 validation for encryption.