O
Omniper
Now in early access

Find the misconfiguration before the outage does

Upload a config. Get findings in under 2 minutes. Built for network engineers who want evidence, not guesswork.

View on GitHub

Configs processed in memory · never stored · no credit card required

omniper — audit
40+
Vulnerability classes
6
Vendor formats
<2min
Full audit time
0
Bytes stored
O
New scan

Start a new scan

Upload a config file directly, or connect via API to automate at scale.

Upload a file

Drop your config file here

or click to browse

.cfg.conf.txt.json.yaml.xml

Cisco, Juniper, Fortinet, Arista, MikroTik and more

Connect via API
# Analyze a config file via API
curl -X POST \
https://api.omniper.com/v1/scan \
-H "Authorization: Bearer YOUR_KEY" \
-F "file=@router.cfg"

Integrate Omniper into your CI/CD pipeline, network management system, or custom tooling.

Click the upload area above to see the full scan flow.

Get started free →

Everything for network security intelligence

From configuration analysis to outage reproduction — find, fix, and prevent network issues before they impact your business.

Config Analyzer

Upload any vendor config — Cisco, Juniper, Fortinet, Palo Alto. AI instantly scans for security gaps and misconfigurations across 40+ vulnerability classes.

See supported formats
$ omniper scan --file router.cfg
 
✖ CRITICAL Telnet not restricted (line 58)
✖ HIGH Weak IKE encryption (line 2125)
✖ MEDIUM IP source-route enabled (line 57)
 
18 findings · report ready

Vulnerability Detection

Catches missing BGP authentication, weak SNMP community strings, plaintext passwords, shadow ACLs, unauthenticated NTP, and compliance violations — with line-level evidence for every finding.

Browse vulnerability classes
Finding #3 — HIGH
BGP neighbor password uses type-7 encryption
 
Evidence:
line 1945: neighbor 10.254.0.2 password 7 ...
 
Fix: use 'password 6' (reversibly encrypted)
or migrate to certificate-based auth

Compliance Audits

Built-in NIST SP 800-53, ISO 27001, and PCI DSS mappings. Every finding is tagged to the exact control it violates — so your audit report writes itself.

View compliance frameworks
NIST SP 800-53 — AC-17 (Remote Access)
✖ FAIL transport input not restricted to SSH
 
PCI DSS — Req 2.2.7
✖ FAIL Telnet in use on VTY lines
 
ISO 27001 — A.9.4.2
✔ PASS SSH v2 configured

AI Root Cause Analysis

The AI doesn't just list what's wrong — it explains why it matters, maps the blast radius, and gives you a step-by-step remediation plan you can paste straight into the CLI.

See a sample report
Root cause:
Type-5 (MD5) hashes are brute-forceable
with modern hardware in hours.
 
Blast radius:
Full device takeover if compromised.
 
Fix:
SW1(config)# enable secret 9 <password>

Issue Reproducer

Simulate outages and intermittent failures before they hit production. Get ContainerLab YAML files with the exact topology so you can reproduce and fix locally.

How reproduction works
$ omniper reproduce --issue bgp-flap-AS65001
 
Generating ContainerLab topology…
Exporting: lab-bgp-flap.yaml
 
Nodes: r1 (cisco_ios), r2 (juniper_vmx)
Links: r1-eth0 ↔ r2-ge-0/0/0
Configs pre-loaded with fault injected

Multi-Vendor Support

Works with Cisco IOS / NX-OS, Juniper JunOS, Fortinet FortiOS, Palo Alto PAN-OS, Arista EOS, and MikroTik RouterOS — with more vendors added every month.

Full vendor list
Supported vendors:
 
cisco_ios cisco_nxos
juniper_junos fortinet_fortios
paloalto_panos arista_eos
mikrotik_ros checkpoint_gaia
 
+ custom parsers via API
omniper scan --file router.cfg

Ready to audit your network?

Free to run. No credit card. Config files processed in memory and never stored.

Early Access

Be the first to get access

Omniper is in active development. Join the waitlist and we'll reach out personally when your spot is ready — no spam, no pressure.

  • Full security & compliance audit
  • Interface & routing analysis
  • AI remediation recommendations
  • PDF report export
  • Early adopter pricing — locked in for life

No credit card. No commitment. Early adopters get lifetime preferred pricing.