Sherlock Guard ingests your logs, CSV/JSON and CVE reports, classifies findings, enriches them with CWE/CVE context, and produces compliance-ready exports — with analyst review built in.
Ingest, classify, review and export — without stitching together a dozen tools.
The sgagent CLI collects logs, CSV and reports from your machines and uploads them securely.
Findings are classified by severity and tagged with CWE, with an AI-assisted pass and a deterministic fallback.
Enrich findings with CWE/CVE context and let analysts review, triage and annotate them.
Produce CSV, JSON and PDF exports — with formula-injection-safe CSV — ready for audits.
No six-month rollout. Create an org, deploy the agent to inventory your hosts — or upload logs and CSV from the console — and let the worker do the first pass.
Start a 30-day free trial — no card. Your tenant is provisioned with row-level isolation in Postgres.
Download sgagent and enrol each host with a token. It inventories that host — packages, listening services, OS/EOL — defensively, on-box only. Or upload logs and CSV from the console.
The worker classifies findings; analysts review and triage; you export compliance-ready reports.
$ sgagent register --backend $API --token $TOKEN→ registered: device 9f3a… ok$ sgagent collect✓ 412 packages · 31 services · OS/EOL (1.2s)$ sgagent watch --interval 300→ collecting every 5m · on-box only$ sgagent recommendations --ndjson{"action":"upgrade","pkg":"openssl"} ×3
Every plan starts with a 30-day free trial — no card. Prices are per month, billed in EUR, VAT excluded.
For small teams getting started with real workloads.
The complete plan: more formats, watch mode, audit export.
High volume, every format, custom dashboards and MSP multi-tenant.