MantisRMM gives you full remote control over every endpoint. Mantis360 finds, prioritizes, and auto-closes vulnerabilities the moment they're patched — at a fraction of the cost of Tenable or Qualys.
Real-time risk scoring, CVE tracking, and remote control across every endpoint — continuously updated as agents check in. No infrastructure to run.
Two purpose-built tools that cover remote management and vulnerability security — no upsell tiers, no feature gates.
Full remote desktop access to Windows endpoints with bidirectional clipboard sync and branded connection/disconnection notifications for the end user.
Execute PowerShell, Bash, and Python scripts across your fleet. Build workflows with chained steps, variable substitution, dry-run, and rollback.
Windows Update management, Winget software deployment, and patch status tracking across all your endpoints from a single view.
Native agents for Windows (10/11, Server), Linux (amd64 + arm64), and macOS (Intel + Apple Silicon) — all managed from one portal.
Inspect running processes, kill tasks, start and stop services, browse and transfer files — all without a remote desktop session.
Software inventory auto-correlated against NVD, EPSS, and CISA KEV. See which installed software has known exploitable vulnerabilities without switching tools.
Add structured custom fields to agents and use them as dynamic variables inside scripts and automation workflows — read or write via script output.
Custom connect and disconnect toast notifications shown on the managed endpoint — keeps users informed without breaking their workflow.
200,000+ CVEs matched against your live software inventory on every agent check-in. EPSS exploit probability scoring cuts noise by up to 90%.
When software is removed from an endpoint, Mantis360 automatically closes the vulnerability finding — marked "auto-remediated" with a timestamp. No other tool does this.
Deploy a lightweight probe to any subnet and instantly discover all hosts, fingerprint services, and run vulnerability scans against network-facing devices.
Compliance scanning against CIS, DISA STIG, and custom frameworks. Track posture over time and generate audit-ready reports with remediation guidance.
OSINT and external recon on your public-facing infrastructure. SSL/TLS certificate monitoring, exposed service detection, and live ThreatFox threat intelligence overlay.
Active Directory posture checks — stale accounts, weak password policies, privileged group exposure, and lateral movement paths before attackers find them.
Identify industrial control systems and OT devices on your network. Auto-match against CISA ICS advisories and Shodan-style fingerprinting for non-IP assets.
Findings ranked by CVSS × EPSS combined risk score — the highest-risk, most-likely-to-be-exploited vulnerabilities surface at the top. CISA KEV findings auto-escalate to Critical.
Per-agent and per-asset pricing you can calculate yourself — no quotes required, no surprise invoices, no per-technician seat fees.
When an agent confirms software is removed, Mantis360 closes the finding automatically. Tenable, Qualys, and Rapid7 require manual sign-off. We don't.
Every tenant gets a dedicated D1 database and R2 object store. Your data never co-mingles with another organization's data in shared storage.
Deployed on Cloudflare's global edge. No servers to manage, no VMs to patch, no license managers. You install an agent and you're live in minutes.
Calculate your cost below. No sales call required, no annual commitment lock-in on trials.
A quick look at how MantisOps compares to the most common alternatives. View the full feature-by-feature comparison →
| Feature | Mantis360 | Tenable | Qualys | Rapid7 |
|---|---|---|---|---|
| Auto-remediation on check-in | ✓ | ✗ | ✗ | ✗ |
| EPSS exploit probability scoring | ✓ | ✓ | △ | ✓ |
| CISA KEV auto-escalation | ✓ | ✓ | ✓ | ✓ |
| ICS/OT device detection | ✓ | △Add-on | △ | ✗ |
| Identity/AD exposure scanning | ✓ | △Tenable One | ✗ | ✗ |
| Per-tenant data isolation | ✓ | ✗ | ✗ | ✗ |
| Flat pricing (no per-asset fee) | ✓ | ✗ | ✗ | ✗ |
| Free trial (no credit card) | ✓ | △ | △ | △ |
| Feature | MantisRMM | NinjaOne | Atera | ConnectWise |
|---|---|---|---|---|
| Linux (amd64 + arm64) full support | ✓ | △ | △ | △ |
| macOS Intel + Apple Silicon | ✓ | ✓ | △ | △ |
| Branded end-user notifications | ✓ | △ | ✗ | △ |
| NVD CVE correlation built-in | ✓ | △ | △ | △ |
| Integrated VM platform | ✓Mantis360 | ✗ | ✗ | ✗ |
| Remediation scripts with rollback | ✓ | △ | △ | ✓ |
| Pricing | $2/agent/mo | ~$3–6/device | $129/tech/mo | Quote required |
| Free trial (no credit card) | ✓ | ✓ | ✓ | △ |
Guides and references to help you deploy agents, build automations, and get the most out of each platform.
Deploy your first Windows, Linux, or macOS agent in under 5 minutes. Download the installer, run it, and your endpoint appears in the portal.
Agents are single-binary executables. Windows: MSI installer or silent install via Group Policy. Linux: shell script or systemd service. macOS: pkg installer.
Write PowerShell, Bash, or Python scripts. Use {{VARNAME}} for user variables, {{AGENT:field}} for agent fields, and {{FIELD:label}} for custom fields.
Register your organization, install 360 agents on endpoints, and your first vulnerability findings appear within minutes of the first check-in.
Deploy a network probe to any subnet. The probe binary runs continuously and reports discovered hosts, open ports, and service fingerprints to the Mantis360 portal.
Assign CIS or DISA STIG bundles to endpoints. Mantis360 scores compliance posture on every check-in and flags drifted controls with remediation steps.
Each product works independently — you can subscribe to MantisRMM only, Mantis360 only, or both. When used together, MantisRMM's software inventory automatically feeds Mantis360's CVE correlation so you get deeper vulnerability visibility without extra configuration. But both products have standalone value.
Yes, free trials are available for both products — no credit card required. Fill out the trial registration form and we'll provision your tenant. The trial includes full feature access with a limited agent/asset count so you can evaluate everything before committing.
MantisRMM is priced at $2 per agent per month, with a minimum of 10 agents ($20/month). You can add agents in increments of 10 at any time. There are no per-technician fees — all users in your organization can access the portal. An "agent" is one installed endpoint (Windows, Linux, or macOS device running the MantisRMM agent).
Mantis360 is priced at $4 per asset per month, sold in packs of 50 assets ($200/pack/month). An "asset" is any endpoint, network device, or cloud resource monitored by Mantis360 — whether through an installed agent or via network scanning. You can add packs as your asset count grows.
Both MantisRMM and Mantis360 agents support:
All agents report to the same portal. No separate console or product needed per platform.
Every time a Mantis360 agent checks in (every 60 seconds by default), it reports the current software inventory. Mantis360 compares this against all open vulnerability findings for that endpoint. If the vulnerable software is no longer present, the finding is automatically marked "auto-remediated" with a timestamp and the identity of who/what removed the software. Manual remediation (where a human marks a finding resolved) creates a separate "manually remediated" audit entry. No other commercial vulnerability management tool does this automatically.
Every organization gets a dedicated D1 database and R2 object store — your data is never stored in shared tables alongside other tenants' data. Data is hosted on Cloudflare's infrastructure in the United States. MantisOps staff have admin-level access for support purposes only and do not access customer data without permission. No data is sold or shared with third parties.
Agent installation takes under 5 minutes per machine — download the installer, run it, and the endpoint appears in your portal within seconds. For network scanning, deploying a probe to a subnet takes about 10 minutes. The Mantis360 vulnerability dashboard starts populating with findings on the first agent check-in (~60 seconds after install). There are no servers, no virtual machines, and no configuration files to manage.
Yes, and this is the recommended configuration. Both agents are lightweight and run independently. When both are installed, Mantis360 uses MantisRMM's live software inventory for deeper CVE correlation, and you can trigger remediation scripts via MantisRMM when Mantis360 surfaces a critical vulnerability — all from a unified workflow.
EPSS (Exploit Prediction Scoring System) is a machine-learning model maintained by FIRST.org that predicts the probability that a given CVE will be exploited in the wild within the next 30 days. A critical-severity CVE with a low EPSS score (rare exploits in the wild) is far less urgent than a medium-severity CVE with a high EPSS score (actively exploited today). Mantis360 multiplies CVSS × EPSS to rank findings by actual risk — not just theoretical severity — which can reduce actionable vulnerability noise by up to 90%.
Start a free trial for MantisRMM, Mantis360, or both — no credit card, no per-device pricing, no infrastructure to manage.