VPS security auditing

Do you know exactly what is exposed across your infrastructure?

Cronsec audits every layer of your VPS and surfaces the vulnerabilities that actually matter. The result: a report prioritized by exploitation risk, with the exact fix for every finding.

Request an audit See what we check

The problem

A server is only secure the day it ships. From then on, packages pile up known CVEs, configs loosen under pressure, and ports open without anyone logging it. Most teams secure their VPS once and move on, until the problem shows up as an actual incident.

The solution

Cronsec audits your VPS on a schedule, automatically, and ranks every finding by its real exploitation risk, not its theoretical severity. The reviews run on their own, at defined intervals: your security no longer depends on someone remembering to check it.

The problem

Your VPS security, without having to stay on top of it.

Cronsec checks it automatically and only pings you when something needs your attention.

Servers drift the moment they ship

A VPS is secure on day one and exposed by day thirty. Packages age, configs loosen, and ports quietly open while nobody is watching.

Patching a critical vulnerability on an exposed host takes 61 days on average. Edgescan, Vulnerability Statistics Report

Scanners flood you with noise

Most tools dump hundreds of findings without telling apart what truly matters. Teams end up ignoring the dashboard entirely.

83% of alerts are false positives, and analysts cannot keep up with 67% of them. Vectra AI, State of Threat Detection

Security lives outside the workflow

Issues surface in another tool, days after deploy, disconnected from whoever could have fixed them in seconds.

Exploits are now the #1 initial access vector (33% of intrusions). Mandiant (Google Cloud), M-Trends

One missed patch is the whole breach

An attacker only needs one outdated package or open port. Auditing has to be continuous, not an annual checkbox.

Vulnerability exploitation nearly tripled (+180%) and now causes 14% of breaches. Verizon, Data Breach Investigations Report (DBIR)

cronsec · vps-prod-01

$ cronsec audit vps-prod-01

→ discover    services 18 · ports 6 · users 4
→ assess      checks 214 · CIS·OWASP
! critical    nginx 1.18  ·  4 CVEs
! high        SSH password auth enabled
! high        root login permitted
~ medium      /etc/backup.conf world-readable
✓ resolved    ufw active · fail2ban running

12 findings  ·  prioritized  ·  report ready

How it works

From connection to a clean server in four steps

01 Discover –

Connect once over SSH. Cronsec maps every service, port, package, and user account on your VPS in minutes, with no agent to install or maintain.

02 Assess +

Each surface is checked against live CVE feeds, the CIS Benchmarks, and your own policy, from the kernel up to the application layer.

03 Prioritize +

Findings are ranked by real exploitability and blast radius, not by raw counts, so the list always starts with what matters most.

04 Remediate +

Every issue ships with the exact remediation step and a re-scan that confirms the fix actually worked.

What is at stake

High-risk exposure is not the exception, it is the norm.

In an analysis of around 3,500 internet-facing hosts, most of the companies tested had high-risk vulnerabilities on their network perimeter, and more than half had at least one server with an exploit already publicly available. These are not rare breaches, but machines like yours.

84% of the companies tested had high-risk vulnerabilities on their internet-facing perimeter; 58% had at least one with a public exploit.

Source: Positive Technologies, «Vulnerabilities on the corporate network perimeter»

Open findings

OpenSSL unpatched · CVE-2026-0419 actively exploited

critical

nginx 1.18 outdated · 4 advisories remote, unauthenticated

high

SSH password authentication enabled brute-forceable

high

World-readable backup credentials local disclosure

medium

A service built to run on autopilot

Your server's security, without making it your job

You keep moving. We watch what you leave exposed and only ping you when there's something to fix.

Easy to connect

Connect once over SSH. Nothing to install, patch, or maintain on the box.

Continuous

Re-audits on a schedule you set, as often as you need.

Prioritized

Ranked by exploitability and blast radius, never by raw counts.

Standards-aligned

CIS Benchmarks, OWASP, and live CVE intelligence built in.

Fix-ready

Every finding ships with the exact command or config to fix it.

Coverage

Audited end to end

One pass across every layer attackers actually probe.

Ports & network

✓ 6 listening ports mapped pass

! 22/tcp SSH open to 0.0.0.0/0 high

~ 8080/tcp dev server reachable medium

✓ ufw default-deny inbound pass

Pricing

Pay for what you use. No subscriptions.

Pricing is per server: it does not matter how many sites the VPS hosts, we audit the whole machine. You load a credit balance and each audit costs a known number (1 credit = €1).

Basic

A simple VPS, no containers

20€ / server

Read-only: we review, we touch nothing. You get a report with clear priorities.

Get started

Recommended

Premium

A VPS with Docker or several services

49€ / server

Read-only: we review, we touch nothing. You get a report with clear priorities.

Get started

Business

Multiple servers or very specific security requirements

Custom

Read-only: we review, we touch nothing. You get a report with clear priorities.

Credit balance

Suggested initial load: €50. It covers one audit and leaves balance for remediation when available. No aggressive expiry, no lock-in.

Remediation & maintenance

Coming soon

Guided, applied fixes: we don't just tell you what's wrong, we leave it resolved for you —from access and firewall to pending updates.
Continuous maintenance: your server reviewed on a recurring basis, so it stays secure over time, not just on audit day.

Frequently asked questions

What people ask

Is it safe to give you access to my server?

Access is only opened during the scheduled audit, using certificates that expire in minutes and only work from our infrastructure. We never store a permanent key to your server.

Can the agent break something?

The audit is read-only: we review and report, we change nothing. Remediation (coming soon) will always ask for your approval before each change and take a backup first.

Do I need technical knowledge?

Not really. The report translates each finding into plain language —what puts you at risk and why— and if something isn't clear, you have a real professional to ask.

What happens with my data?

We only collect the configuration information needed for the audit. See our privacy policy for the full details.

Is there a subscription?

No. You pay only for what you use: load a credit balance and spend it when you need to, at your own pace. No monthly subscription, no lock-in, no automatic charges.

Be the first to audit your server.

Leave us your email and we'll let you know as soon as Cronsec is available. You'll connect your VPS and get a prioritized report in under ten minutes.

No spam. We only ping you when you can audit your first server.