# Features ## Platform functions

Function	SaaS SB	SaaS Pro	On-Prem
Dashboards	true	true	true
Asset Operation Center	true	true	true
Cross Platform Compatibility (Windows, Linux, MacOS)	true	true	true
PDF-Reports	true	true	true
Switch alerts to deviations and safety events	true	true	true
Alert notification via email, SMS, Slack, Mattermost, Microsoft Teams	true	true	true
Group assets with tags	true	true	true
Unlimited number of team members	true	true	true
Role concept incl. user-defined roles	true	true	true
Logging of user activities	true	true	true
API	true	true	true
Multi-client capability	true	true	true
Subordinate clients	false	false	true
License management	false	false	true
White Label	false	false	true
Own mail server	false	false	true
Single Sign On (SSO)	false	false	true

## SIEM - Security Information and Event Management

Function	SaaS SB	SaaS Pro	On-Prem
Log Collection - IT-Assets, Applications and Cloud	false	false	true
Log Analyse und Event Correlation	false	false	true
Log Forensics	false	false	true
Log Retention	false	false	true
Daten Normalisierung	false	false	true
Dashboards	false	false	true
SIEM Workflows	false	false	true
Hersteller Vorlagen	false	false	true
Managed Event-Streams	false	false	true
Cloud Connectors	false	false	true
Individual Extractors	false	false	true
Obfuscators	false	false	true

## Vulnerability Management

Function	SaaS SB	SaaS Pro	On-Prem
CVE Dashboard (Cockpit)	true	true	true
BSI warning about found CVEs	true	true	true
CVE Database	true	true	true
CVE recommendations for countermeasures	true	true	true
CVE Whitebox Scan and Monitoring	true	true	true
CVE Greybox Network Scan	true	true	true
CVE Blackbox Network Scan	true	true	true
CVE Website Scan and Monitoring	true	true	true
CVE alerting by criticality	true	true	true
Software inventory	true	true	true
Penetrationtesting	true	true	true
Manage and automate updates	true	true	true
Configuration Management	true	true	true

## Intrusion Detection und Prevention (IDS/IPS)

Function	SaaS SB	SaaS Pro	On-Prem
Host based attack detection (IDS) detection	true	true	true
Host based blocking of attacks (IPS) response	true	true	true
Logging of all attacks and classification by severity	true	true	true
Live visualization of attacks	true	true	true
Definition of detection levels according to protection needs	true	true	true
Definition of blocking levels according to protection needs	true	true	true
Define whitelists	true	true	true

## Microsegmentation

Function	SaaS SB	SaaS Pro	On-Prem
Software defined groupings of IT assets	true	true	true
Management of East-West data traffic according to the Zero Trust principle	true	true	true
Isolation of devices and device groups	true	true	true
Implementation of use case-specific IT security guidelines	true	true	true

## File Integrity Monitoring

Function	SaaS SB	SaaS Pro	On-Prem
Monitoring access to files and directories	true	true	true
Logging of all accesses	true	true	true
Alerting after unauthorized access	true	true	true
Provision of managed rules	true	true	true
Definition of individual sets of rules	true	true	true

## Automated penetration testing

Function	SaaS SB	SaaS Pro	On-Prem
Network segment scan	true	true	true
Scan of single IP-addresses	true	true	true
Scan of Websites	true	true	true
Information Gathering (Footprinting of the target systems)	true	true	true
CVE-Scan Blackbox / Greybox	true	true	true
Service Bruteforce (Check for insecure credentials)	true	true	true
Service Discovery (Specific checks of services for misconfigurations)	true	true	true
Clear evaluation of audits	true	true	true
Automated recurring scans	true	true	true
Send PDF-reports by e-mail	true	true	true
Store own password list	true	true	true
Extend vectors with custom scripts	true	true	true
Define asset inventory, IP addresses or endpoints as target systems	true	true	true

## Website monitoring

Function	SaaS SB	SaaS Pro	On-Prem
Availability and response times	true	true	true
SSL/TLS-Monitoring	true	true	true
TLS validation according to BSI TR-03116-4	true	true	true
Certificate Manager	true	true	true
DNS-Monitoring	true	true	true
HTTP-Header Security Check	true	true	true
Port-Monitoring	true	true	true
Footprinting of the application environment	true	true	true
CVE-Scan	true	true	true

## IT monitoring (with agent)

Function	SaaS SB	SaaS Pro	On-Prem
Availability monitoring: CPU, RAM, SWAP, network, hard disks	true	true	true
Monitoring of any data	true	true	true
Monitor metrics with machine learning	true	true	true
Monitor installed software	true	true	true
Monitor Autostarts	true	true	true
Monitor services	true	true	true
Monitor ports	true	true	true
Monitor processes	true	true	true
System log monitoring	true	true	true

## IT monitoring (without agent)

Function	SaaS SB	SaaS Pro	On-Prem
Ping-Monitoring	true	true	true
Port-Monitoring	true	true	true
SNMP-Monitoring	true	true	true
Upload own MIBs	true	true	true

## IT inventory

Function	SaaS SB	SaaS Pro	On-Prem
Permanent monitoring of the network according to its participants	true	true	true
Complete network inventory	true	true	true
Interactive asset map	true	true	true
Agent based inventory	true	true	true
Software inventory	true	true	true

## Automation

Function	SaaS SB	SaaS Pro	On-Prem
Add your own scripts as plugins	true	true	true
Run scripts regularly	true	true	true
Autonomous response to system events	true	true	true