Skip to main content

Your First Scan

Panguard Scan analyzes your system in approximately 60 seconds, identifies security weaknesses, and provides actionable remediation guidance. Quick scans are free; full scans require the Solo tier or above.

Prerequisites

Before running your first scan, ensure Panguard is installed: 
# Install via npm
npm install -g @panguard-ai/panguard

# Or via the one-line installer
curl -fsSL https://get.panguard.ai | bash

# Verify installation
panguard --version

Run Your First Scan

1

Run a Quick Scan

Start with a quick scan to get an immediate overview (free, no login required):
panguard scan --quick
This completes in approximately 30 seconds and covers OS detection, network interfaces, open ports, running services, password policy, firewall status, and security tool detection.
2

Review the Results

The scan displays findings grouped by severity:
  -- Network Interfaces -------------------

  en0    192.168.1.100  (Wi-Fi)
  lo0    127.0.0.1      (Loopback)

  -- Open Ports ----------------------------

  Port   Proto  Service     PID    Risk
  22     tcp    sshd        1234   HIGH
  80     tcp    nginx       5678   LOW
  443    tcp    nginx       5678   LOW
  3306   tcp    mysqld      9012   MEDIUM
3

Check Your Security Score

Every scan produces a 0-100 security score with a letter grade:
  -- Risk Score ----------------------------

  Score: 72/100 [------------------] Grade: C
  Trend: improving (+5 since last scan)

  Breakdown:
    Firewall:    80/100
    Open Ports:  60/100
    Passwords:   50/100
    Updates:     90/100
    Tools:       70/100
    Threats:     85/100
    Compliance:  65/100
    Response:    70/100
4

Address Critical Findings

Focus on CRITICAL and HIGH severity findings first. Each finding includes a description and remediation guidance.

Quick Scan vs. Full Scan

FeatureQuick Mode (--quick)Full Mode (default)
Duration~30 seconds~60 seconds
Tier requiredFreeSolo
OS detectionYesYes
Network interfacesYesYes
Open portsYesYes
Running servicesYesYes
Password policyYesYes
Firewall statusYesYes
Security toolsYesYes
SSL certificate validationNoYes
Scheduled task auditNoYes
Shared folder securityNoYes
Risk scoreYesYes
To run a full scan: 
# Login first (required for Solo tier)
panguard login

# Run full scan
panguard scan

Severity Levels

SeverityMeaningRecommended Action
CRITICALImmediate risk of compromiseFix immediately
HIGHSignificant security riskFix within 24 hours
MEDIUMModerate risk, improvement recommendedFix within one week
LOWLow risk, best practice suggestionFix when convenient
INFOInformational findingNo action required

Generate a PDF Report

Export your scan results as a professional PDF report: 
# English report
panguard scan --output my-report.pdf

# Traditional Chinese report
panguard scan --output my-report.pdf --lang zh-TW
The PDF includes:
  1. Cover page — Organization name, scan date, branding
  2. Executive summary — Risk score, grade, finding statistics
  3. Findings detail — Each finding with severity, description, and location
  4. Remediation guidance — Specific fix steps for each finding
  5. Compliance mapping — Findings mapped to ISO 27001 / SOC 2 / Taiwan Cyber Security Act

What Comes After Your First Scan

Enable Real-Time Protection

Start Guard to continuously monitor and protect your system.

Set Up Notifications

Configure Telegram, Slack, or email alerts for security events.

Generate Compliance Reports

Use scan findings to generate ISO 27001, SOC 2, or TCSA reports.

Deploy Honeypots

Set up decoy services to detect and profile attackers.

CLI Reference

panguard scan [options]

Options:
  --quick              Quick mode (~30 seconds)
  --output <path>      PDF report output path
  --lang <en|zh-TW>    Language (default: en)
  --verbose            Verbose output