PatchSentry

PatchSentry is a web app (with an optional lightweight desktop scanner) that continuously inventories network devices and flags the ones most likely to get you breached. It discovers routers, switches, firewalls, Wi‑Fi controllers, VPN gateways, and “mystery” appliances via safe network probing and read-only integrations, then maps firmware/software versions to known exploited vulnerabilities (KEV) and vendor advisories. Instead of dumping CVEs, it produces a prioritized remediation queue: what to patch first, what compensating controls to apply, and what can wait. It also detects end-of-life gear, default/weak management exposures (e.g., admin interfaces reachable from user VLANs), and configuration drift that re-opens old holes. Reporting is built for reality: a one-page weekly exec summary plus a technician-ready task list with change-window notes. This is not a full-blown SIEM; it’s focused, fast, and meant to reduce “unknown unknowns” in network infrastructure.