Most often IT security is not thought about until a problem arises. SERVERWAT.CH Security Scanner helps you to easily scan your servers for vulnerabilities on a regular basis and act on the results without the effort of setting up and maintaining your own scanning infrastructure.
In most cases servers are directly connected to the internet and offer services like HTTP, SMTP or SSH. This opens the door to potential security vulnerabilities like bugs in software or configuration errors. SERVERWAT.CH Security Scanner helps you to check your servers for the latest security vulnerabilities on a regular basis and know when it's time to call your admin.
OpenVAS uses a database of more than 50.000 network vulnerability tests (NVT), which are divided into families like web application abuses, webservers, databases and microsoft windows bulletins. An NVT is a script to check a remote system for a known vulnerability. Known vulnerabilities are for example the Heartbleed Bug in the popular OpenSSL cryptographic software library or SambaCry, a zero-day vulnerability in Samba.

Scanning servers

Just do the following steps:
  • Create an account
  • Confirm your email
  • Add a server
  • Choose a scan schedule
  • Verify your server ownership
  • Get notified via email!
Unfortunately there is no magic number for how often to run a vulnerability scan. It is a good choice to start with a scan once a week.
This depends on your server and the number of open ports. A fast scan takes usually a few minutes, a slow scan can take up to one hour.
Yes and no. Every scan will send a large amount of requests to your server and will create a lot of noise in your log files. But our scans won’t harm your server or disrupt the functionality of services running on your server.
Since network services are detected and scanned, all major operating systems are supported.
You can download a sample report here.
If you want to filter our scans from your error reporting or want to whitelist our scan servers please use the following list of IP addresses:
  • 2a01:4f8:1c0c:4792::1/64
  • 2a01:4f8:1c0c:5b86::1/64

My account

Please contact us. We change it for you.
To be able to offer our service, we work together with Paddle.com. Paddle supports PayPal and all major Credit Cards at the moment.
Go to your account page and click "Update payment information".
You can cancel your subscription with just a few clicks. Go to your account page and click "Cancel subscription". Your subscription will expire the following month.
Please contact us. We do it for you.


OpenVAS (Open Vulnerability Assessment System) is a set of tools offering vulnerability scanning and vulnerability management. The development of OpenVAS, which is a fork of Nessus Vulnerability Scanner, started in 2005 after the developers of Nessus changed the license to a proprietary closed source license.
OpenVAS allows you to run several network vulnerability tests (NVT) written in Nessus Attack Scripting Language (NASL), which OpenVAS gets through a public NVT feed. The feed contains more than 50.000 NVTs.
All OpenVAS components are free software and can be downloaded from http://www.openvas.org.
OpenVAS will initially perform a port scan to detect open ports on your server. Once open ports are detected, OpenVAS will test them for known vulnerabilities using more than 50000 network vulnerability tests (NVTs). When the scan is done, OpenVAS will generate a report with all details for each finding. The report also contains risk levels and proposed solutions.