IoT security. built to make a difference.
simple
safe
affordable

no TAP | SPAN ports or agents
no device | network impact
50% savings vs. competitors

no TAP | SPAN ports, agents, tuning or multiple appliances
no device crashing or network impact
free to start, 50% savings vs. competitors

choose your edition

Starter
for corporate use or proof of concepts

$0

IoT mini device on a palm
Auditor
for professional security auditors

$500 / yr.

IoT mini device on a palm
Professional
for small and medium-sized organizations

$.90 / device / yr.

Enterprise

for large organizations

chat with our team

get the Starter Edition

plug-n-play | set it & forget it | no credit card | no  TAP or SPAN ports | no agents | no tuning

just 5 minutes to:

submit the information below to learn how 

trusted by enterprises

The IoT-miniTM will only use locally accessible network information protocols to obtain information about local devices to be profiled. As such, no data could be used to identify or attack any customer. The data would be useless without direct access to the network, and direct access to the network would allow access to this information anyway. The IoT-miniTM will connect to our CloudPortal® a minimum of every 5 minutes to access the updates and databases that help determine what tests to perform for a given device. There is no collection of packets or any potentially sensitive data in any way, not directly to the appliance itself or out to our CloudPortal®. Any data that is retained is stored in the geographic region of the customer’s choosing. The IoT-miniTM will attempt to communicate with devices to assist in device profiling and vulnerability detection. This communication is minimal, a small fraction of the traffic in comparison to network scanners, and done interatively to avoid any impact to the device or network. These measures provide assurance to our customers and partners that we will not gather or maintain any of their sensitive or protected information in our systems and that we be safe on the network and to devices.

Safe on Devices: The IoT-miniTM uses a proprietary, non-intrusive technique called PortSafeTM Inspection. Unlike vulnerability scanners that can overwhelm and crash sensitive IoT devices, PortSafeTM works iteratively and intelligently to understand the device and how to best test it. The result is that it will not interfere with devices as it does its discovery, identification, and vulnerability detection.

Safe on the Network: Unlike competitive solutions, the IoT-miniTM does not use network TAP/SPAN ports, so there is no addition load on the switch to duplicate packets which can cause network performance issues. Also, the IoT-miniTM generates only a small fraction of traffic vs. network scans.

The Benefit: Now you can safely and confidently discover and vulnerability test sensitive and resource-constrained devices that are excluded from intrusive vulnerability scans, without concern of crashing devices or causing network performance issues.

5/5

“The report was incredibly helpful in showing detailed device inventory and vulnerability information.”

-CIO
Real Estate Management Firm
5/5

“Amazing. After a 5 minute install, it automated device inventory that would have taken days to do manually “

-IT Security Manager
Large Healthcare System
5/5

“What a cool product. I’ve already started telling my colleagues to get one.”

-IT Security Analyst
Healthcare System
5/5

“The IoT-mini gives much better visibility than traditional vulnerability scanners.”

-Independent Security Consultant

5/5

“Excellent product that gave me new visibility into IoT vulnerabilities, without crashing devices”

-IT Director
Medium-size Hospital
5/5
“It was a set it and forget it product,
which is rare.”
-Sr. Manager
Big 5 Accounting Firm

frequently asked questions

The IoT Secure IoT-miniTM is a free IoT security tool that makes it fast and easy to address common IoT security challenges. The IoT-mini is fits in the palm of your hand and runs off USB power connected to any ethernet jack on the network.The IoT-miniTM is completely automated. When you get your IoT-mini and connect it to the network, it will:
  1. Discover, track and identify IoT devices
  2. Safely detect IoT-specific vulnerabilities that vulnerability scanners often miss
  3. Summarize IoT inventory and vulnerabilities in the report
The IoT-miniTM is also aware of any new devices that connect to the network.  When new devices connect, the IoT-miniTM will also begin to profile them to be identified and checked for IoT vulnerabilities. Also, there are no agents to install, no network TAPs, and there is no tuning.

Safe on Devices: The IoT-miniTM uses a proprietary non-intrusive technique called PortSafeTM Inspection. Unlike vulnerability scanners, PortSafeTM will not interfere with devices as it discovers, identifies, and does vulnerability detection on devices.

Safe on the Network: Unlike competitve solutions, the IoT-miniTM does not use network TAP/SPAN ports, so there is no addition load on the switch to duplicate packets which can cause network performance issues. Also, the IoT-miniTM generates only a small fraction of traffic vs. network scans.

The Benefit: Now you can safely and confidently discover and vulnerability test sensitive and resource-constrained devices that are excluded from intrusive vulnerability scans, without concern of crashing devices or causing network performance issues.

The IoT-miniTM will only use locally accessible network information protocols to obtain information about local devices to be profiled. As such, no data could be used to identify or attack any customer. The data would be useless without direct access to the network, and direct access to the network would allow access to this information anyway.

The IoT-miniTM will connect to our CloudPortal® a minimum of every 5 minutes to access the updates and databases that help determine what tests to perform for a given device. There is no collection of packets or any potentially sensitive data in any way, not directly to the appliance itself or out to our CloudPortal®. Any data that is retained is stored in the geographic region of the customer’s choosing.

The IoT-miniTM will attempt to communicate with devices to assist in device profiling and vulnerability detection. This communication is minimal, a small fraction of the traffic in comparison to network scanners, and done interatively to avoid any impact to the device or network.

These measures provide assurance to our customers and partners that we will not gather or maintain any of their sensitive or protected information in our systems and that we be safe on the network and to devices.

The Internet of Things (IoT) is a general category of connected devices that do not necessarily meet the classic description of a computer and are commonly designed for a single purpose. Examples of IoT devices include medical devices, HVAC controllers, door access controllers, IP Cameras, Smart TVs, smart watches, and speakers.

Virtually every network, whether a large corporate intranet or a simple home Wi-Fi network, has IoT devices on it. Most are unknown or unmanaged devices and hard to secure, making it challenging to know what IoT is on the network, where they are, where they are communicating, and whether they are vulnerable. Traditional security tools can’t keep up, making dedicated IoT security solutions a critical piece of any enterprise security strategy.

Most IoT devices are unknown or unmanaged devices that are hard to security for a variety of reasons, including:

    1. risky default behavior like creating open services, have hard-coded passwords or data collection and transmission on their own to other devices
    2. lack built-in security and security patching from the manufacturer
    3. can’t run endpoint agents or don’t produce logs, so they are hard to monitor
    4. can’t be scanned for vulnerabilities because they are resource constrained and easily crash
    5. create Shadow IT problems as they are easily deployed without IT oversight
We have a limited supply of IoT-minisTM available. When you request an IoT-miniTM, we will notify you within 48 hours if we have one available. Once approved, you can expect a simple package with all you need to begin base lining your IoT inventory and security posture. The package includes the IoT-mini, a USB-USB-mini, CAT6 Ethernet cable, and a power brick for the USB cable if there is no USB port to power the device.
Using the IoT-miniTM is as simple as 1-2-3:
  1. Plug in the CAT6 Ethernet cable to a working ethernet port on the network to be scanned
  2. Plug in the power supply
  3. Scan the QR code to activate the IoT-miniTM
  4. Wait 24 hours for the report to be delivered to your inbox
The report includes a complete view of IoT devices connected to your network, along with recommendations. To continue receiving monthly update reports, simply leave the IoT-mini connected to the network. If you would like to assess a different network, simply connect and reactivate the IoT-mini to the new network following the above steps.

We have a limited supply of IoT-minisTM and they are currently available at no charge. The initial report is currently available free of charge.  Restrictions include: 1) You must be an IT employee of a company that: a) has greater than 200 employees, or b) is a value-added reseller, or c) is a managed service provider or d) is a professional security auditor. 2) You will not use the IoT-miniTM or the information it provides for malicious purposes, or to compete in any way with IoT Secure. 3) The IoT-miniTM and any information produced by the IoT-mini must not be used for resell purposes without express, written permission by IoT Secure.
4) The IoT-miniTM is for use on corporate networks, but an initial test may be conducted on a test/lab network. Restrictions are subject to change without notice.

The IoT-miniTM can assess any network environment it’s connected to and activated on.  If you need to test additional networks, please contact sales@iotsecure.io. 

The IoT-miniTM profiles devices into manufacturers, categories and device type.  Then, it creates a risk profile for each device, including vulnerabilities, flaws, risks, and other crucial information.

Once the IoT-mini is connected to a network and activated, it begins inspecting and identifying  devices. Within 24-48 hours (depending on the size of the network), you will be contacted to schedule a report review with an engineer.

The IoT-miniTM FREE is a free IoT security tool that is designed for fast, easy proof of concepts and provides basic IoT inventory and IoT vulnerability detection on a single network segment.

The IoT-miniTM Pro+ uses the same device as the IoT-miniTM FREE, but it is upgraded to provide automated assessments on an entire corporate network, advanced IoT inventory and vulnerability detection, device-level behavior monitoring, granular configuration options and a real-time dashboard.

The IoT-maxTM is a high capacity, full enterprise-level solution that has all the features as the IoT-miniTM Pro +, but it also provides integration of results into existing tools such as SIEM, NAC, Asset & Vulnerability Management, ITSM, etc.

Please send us an email with your questions to sales@iotsecure.io