an ether-x product · v1.0 early access

See every asset.
Grade every risk.
On the infrastructure you have.

EtherSight is a Cyber Asset Attack Surface Management platform for security teams managing real infrastructure — endpoints, network devices, firewalls, virtualisation, identity. Unified visibility, A–F risk grading, and control validation in one operator-grade view.

Request a demo Security overview

Agentless · API-first

On-prem gateway for local systems

Continuous discovery pipeline

Audit-logged end-to-end

topology · live discovery scanning

A · low B C D F · critical

4,872 assets · 10+ connectors · 2 risk events in the last 60 seconds.

connectors · 10+ live, more on the roadmap

Plugs into the stack you already operate.

Microsoft 365

Defender

Intune

Entra ID

FortiGate

Meraki

Proxmox

SolarWinds

UniFi

ServiceNow

+ 3 more

CrowdStrike, SentinelOne, Okta, Jamf and Qualys / Tenable on the post-launch roadmap. See the full integration map.

product surface

Three pillars, one operator view.

Endpoints, network devices, firewalls, virtualisation hosts and identity — correlated into one asset graph, graded against your control posture, and surfaced as actions you can actually close.

Asset Intelligence

/ inventory · correlation · history

Pull from 10+ connectors across the Microsoft, network and infrastructure stacks. Match across hostname, serial, MAC, IP and Entra ID with a five-step cascade. Hardware specs, installed applications, change history per asset — without an agent on the endpoint.

inventory·correlation·specs·apps·timeline·tags

Risk Visibility

/ grading · validation · topology

A configurable risk rule set with asset-class weighting. EDR, patching, encryption, backup-SLA and MFA validated continuously. Live network topology graph with risk-glow highlighting — unique in this category.

a–f grades·edr·patching·backup sla·mfa·topology

Compliance & Operations

/ exemptions · framework · reports

Per-asset risk acceptance with audit trail and expiry. Dynamic tagging engine, CIS and NIST framework mapping, five report types. Action centre auto-generates remediation tasks with optional ServiceNow escalation.

exemptions·tagging·cis / nist·reports·action centre·servicenow

See all five product modules →

how it works

Discover. Correlate. Grade. Act.

A scheduled pipeline runs against your connectors. Every asset is reconciled, graded and surfaced with a next action. You stay in control of what's tracked, what's accepted, and what's exempt.

/ 01

Discover

Connectors poll your stack on a BullMQ schedule — Microsoft 365, Defender, Intune, FortiGate, Proxmox, SolarWinds, UniFi and more. The on-prem gateway reaches systems without cloud APIs.

/ 02

Correlate

Assets reconcile across sources via a five-step matching cascade: hostname → serial → mac → ip → entra-id. Duplicates collapse. The asset graph stays canonical.

/ 03

Grade

A configurable rule set scores every asset against your control posture — EDR, patching, encryption, backup SLA, MFA — with asset-class weighting. Output: A–F grade and a control-gap list.

/ 04

Act

The action centre auto-generates remediation tasks ("enable EDR on 7 devices"). Push to ServiceNow for escalation, or work them in-platform. Audit-logged, with sign-off.

sovereign by design

Built in Britain. Hosted on purpose.

/ jurisdiction

United Kingdom

Designed, written, and operated from the UK. Hosted on a UK cluster with PostgreSQL HA, Redis Sentinel, OpenSearch and Traefik with Let's Encrypt wildcard TLS. Only port 443 exposed.

/ regulatory posture

UK GDPR-aligned

Lawful basis documented, DPIA available on request, standard DPA we'll sign on day one. Multi-tenant isolation enforced at the database layer via PostgreSQL Row-Level Security.

/ data residency

UK · EU · US planned

UK tenancy live at launch. EU and US dedicated tenancy planned for Enterprise customers — tied to a documented expansion plan, not vapour. See the residency roadmap.

honesty section

What's earned, what's coming.

We don't bluff badges. Compliance posture is published and dated. The big ones are on a real roadmap with real evidence.

Standard Status Notes

UK GDPR data protection act 2018 aligned Lawful basis · DPIA · DPA available on request

Multi-tenant isolation postgresql row-level security live Tenant isolation enforced at the database layer

ISO/IEC 27001 information security management in scoping Gap analysis under way

SOC 2 Type II aicpa trust services criteria planned Following ISO 27001

Full compliance posture →

pricing

Five tiers, built for MSPs too.

Community for trial, three commercial tiers in the middle, MSP for partners. Pricing is sales-led — talk to us for a quote that fits your estate. Full comparison and FAQ →

Community

100 assets, 5 connectors, for trial.

Talk to us