Open Source Distributed Network Scanner
Audit your attack surface from multiple vantage points. Track port changes over time. Built by network engineers for GRC and Security teams.
Key Features
Multi-Vantage Scanning
Deploy scanners across different network locations. Scanner groups probe the same targets from multiple vantage points for complete visibility.
Full Audit Trail
Every configuration change, scan execution, and login event is recorded. Built for SOC2 and ISO compliance requirements.
Role-Based Access
Granular RBAC with resource:action scopes. Admin, operator, and viewer roles out of the box, plus custom roles. Integrates with any OIDC identity provider for single sign-on.
Historical Diffing
TimescaleDB-backed results storage enables port change detection over time. Know exactly when a service appeared or disappeared.
Open Source. Transparent by Design.
mipo isn't just open source — it's built to be understood. The Health Overview shows the real-time status of every container in your deployment. The documentation pages list exactly which API calls each feature makes. This isn't a black box with public source code — it's a system designed so the people running it know exactly what they're getting.
Visible Infrastructure
The health dashboard exposes the full state of every service, database, and proxy — not just a green checkmark.
Documented API Surface
Every page in the app documents the exact API calls it makes. No hidden endpoints, no undocumented behavior.
Supply Chain Resistant Scanners
The scanner binary is written in Go with zero dependencies — stdlib only. No node_modules, no transitive supply chain risk. You can read every line of code that runs on your network, and it's written with comments so regular tech workers can understand exactly what it does.
Verifiable Audit History
Every configuration change, every login, every data access is recorded and queryable. You don't have to trust — you can verify.
API-First
Everything you can do in the GUI you can do by API. The interface is built on the same public endpoints you have access to — making mipo integration-friendly from day one.