Network Discovery

Last updated: February 19, 2026

The Network Discovery page helps you understand what devices are present on your network based on your Network Discovery scans. It provides a centralized device list, basic identification details (like OS and fingerprint), visibility into discovered open ports/services, and indications of whether SNMP is available.

Where Network Discovery results come from

Network Discovery scans are scheduled and launched from the Scanning page. You can also view the scan history there to review individual Network Discovery scan runs and their results.

Summary tiles

At the top of the page, summary tiles provide a quick snapshot of the current device inventory discovered by scanning:

  • Total Devices: Total number of devices detected in Network Discovery scans

  • SNMP Enabled: Devices where SNMP is detected as enabled

  • Unidentified: Devices that could not be confidently identified.

Selecting a tile filters the device list to match that category.

Devices table

The Devices table lists every detected device and includes:

  • Host Name

  • IP Address

  • Operating System

  • Fingerprint

  • MAC Address

  • Ports: A count of open ports detected on the device (hover to view port details)

  • SNMP: Indicates whether SNMP is detected for the device (hover to view SNMP information)

  • Last Scanned: The most recent time the device was detected in a Network Discovery scan

Filtering and searching

Use the search bar and filters to narrow results quickly:

  • OS: Filter by operating system

  • Ports: Filter devices by a specific TCP/UDP port

  • Fingerprint: Filter by device fingerprint

  • SNMP: Filter by SNMP enabled/disabled

Saved filters can be used to quickly return to common views. Export CSV allows you to export the current filtered list for offline review or sharing.

Device details drawer

Click a device Host Name to open the device drawer. This provides deeper visibility into that device as it appeared in Network Discovery results, including the device IP and the timestamp for when it was discovered.

The drawer includes three tabs:

Details

Shows key identification attributes, such as:

  • Host Name, IP Address, Subnet

  • MAC Address and MAC Vendor

  • Operating System and Device Fingerprint

  • SNMP Status

  • Certificate information (including expiration and whether the certificate is self-signed, when applicable)

Open Ports and Services

Lists each detected open port on the device, including:

  • Port number

  • Service name (when identified)

  • Protocol type (TCP/UDP)

  • Severity classification (Low, Medium, High, Critical)

This view is useful for quickly validating exposed services and identifying unexpected listening ports.

Data Shares

Lists discovered data shares on the device (when available). This is commonly used to validate where shared paths exist and to support follow-on data scanning or access reviews.