NSAuditor AI Pro & Enterprise Edition v0.2.1 Released — Parallel Analysis Agents and Verified Findings Bring Senior-Analyst Triage to Network Security Audits
Nsasoft US LLC releases NSAuditor AI Pro & Enterprise Edition v0.2.1 — five parallel AI agents, a non-destructive verification engine, and Zero Data Egress for enterprise network security audits.
FOR IMMEDIATE RELEASE
Las Vegas, NV — April 27, 2026 — Nsasoft US LLC today announced the release of NSAuditor AI — Pro & Enterprise Edition v0.2.1, the commercial extension to the open-source NSAuditor AI network security audit platform. The release pairs the v0.2.x parallel-agent analysis pipeline with full compatibility against Community Edition v0.1.24, which now ships with the MCP server scanner plugin and the save_finding MCP tool.
The 0.2.x line is the largest functionality jump since the product’s launch. Five specialized analysis agents — Auth, Crypto, Config, Service, and Exposure — now run in parallel on every scan, each producing structured findings within its category. Results flow into a non-destructive verification engine that confirms whether each finding is real before it reaches a report.
“A scanner that says ‘TLS 1.0 might be enabled’ is just adding to the analyst’s queue. We wanted a system that says ‘TLS 1.0 is enabled — here is the handshake response, here is the matching CVE, here is the MITRE technique, here is the risk score.’ That’s what 0.2 ships. And it does it without sending customer data anywhere — same API call, vastly better output, customer keeps the keys.” — Nsasoft US LLC
What’s New in v0.2.x
Parallel Analysis Agents (Pro)
Five concurrent agents triage scan output by category: weak auth and default credentials; TLS and certificate weaknesses; configuration mistakes (default SNMP communities, debug modes, exposed .env files); service-level CVEs and end-of-life software; and internet-facing exposure paths. Agents execute via Promise.allSettled — categories with no relevant services are skipped automatically.
Verification Engine (Pro)
Findings are confirmed with safe, non-destructive probes — a TLSv1.0 handshake attempt, an SNMP sysDescr GET, a banner grab — and labeled VERIFIED, POTENTIAL, or FALSE_POSITIVE. Probes are rate-limited (2s/host), carry no exploit payloads, write no data, and are individually audit-logged. If it can’t be verified, it’s flagged, not confirmed.
Intelligence-Enriched AI Reports (Pro)
AI providers (OpenAI, Claude, Ollama) work in every tier; the difference is what enters the prompt. Pro injects CVE matches, MITRE ATT&CK techniques, risk scores, and verification status into the prompt — producing executive-ready summaries and remediation plans. Customers supply their own API keys. No scan data transits Nsasoft infrastructure (Zero Data Egress preserved).
Risk Scoring Engine (Pro)
Composite scoring combines severity, exploitability, impact, and exposure. VERIFIED findings score at 1.0×; POTENTIAL findings at 0.6× — so unconfirmed signal cannot inflate a report’s headline numbers.
Cloud and Compliance (Enterprise)
AWS, GCP, and Azure cloud scanners audit security groups, IAM policy, firewall rules, NSG rules, and RBAC bindings using the customer’s own cloud credentials. The Compliance Engine maps findings to NIST CSF, CIS Controls, HIPAA Security Rule, GDPR Article 32, and PCI DSS, producing gap reports with evidence references.
Pro & Enterprise MCP Tools
get_vulnerabilities, risk_summary, scan_compare, save_finding (Pro) and start_assessment, prioritize_risks, compliance_check, export_report (Enterprise) make EE intelligence available to MCP-aware agents and IDE assistants.
What’s Specifically New in v0.2.1
- CE peer dependency aligned to
^0.1.24, picking up the MCP server scanner plugin (CE plugin 070) and the sharedsave_findingMCP tool - Documentation updated across README and architecture references to reflect the unified CE+EE plugin surface
- Repository hygiene:
tasks/directory excluded from publication
Architecture and Data Handling
NSAuditor AI EE is delivered as a Node.js peer package that auto-discovers alongside the open-source CE platform. Without a license key, the base platform operates normally in Community Edition mode. With a Pro or Enterprise key, EE plugins, agents, verifiers, and MCP tools activate in place — same CLI, same configuration, same machine.
Cloud scanners use locally-configured credentials (AWS CLI profile, GCP service account, Azure CLI). AI calls use the customer’s own provider keys. Scan data and findings remain on the customer’s infrastructure unless explicitly exported.
Availability and Pricing
NSAuditor AI — Pro & Enterprise Edition v0.2.1 is available immediately on npm:
npm install -g @nsasoft/nsauditor-ai-eeA valid Pro or Enterprise license key is required to activate EE features. Pricing and licensing: https://nsauditor.com/ai/pricing
System requirements: Node.js 20+, NSAuditor AI CE v0.1.24 or later.
About Nsasoft US LLC
Nsasoft US LLC builds network security and audit tooling for IT teams, MSPs, and enterprise security organizations. NSAuditor AI is the company’s open-core network security audit platform, combining a permissively-licensed Community Edition with a proprietary Pro & Enterprise Edition for organizations that require intelligence enrichment, verified findings, cloud scanning, and compliance mapping.
For more information, visit https://nsauditor.com
Media Contact:
Nsasoft US LLC
info@nsasoft.com
https://nsauditor.com
