Windows / PowerShell Auditor

Start with the Launcher. Let it fetch the rest.

Scantide Auditor PowerShell is the Windows toolkit for authorized internal network discovery, local device checks, software inventory, CVE review, lifecycle intelligence, ServiceNow CMDB comparison and clean HTML reports.

The recommended entry point is ScantideLauncher.ps1. It gives Windows admins the GUI, quick scan options, local PC check, tools, version status, and the built-in function to download or update the required Auditor files.

Download Windows Launcher View Launcher GUI Download full ZIP Need Linux?

The simple Windows download choice

For most Windows users, download the Launcher first. From the Launcher you can download/update the full Auditor package, run LAN scans, run Local Device Check, open tools, and check versions.

1. Recommended: Launcher Best Windows entry point. GUI, scan setup, local check, tools, version status and download/update handling. Download ScantideLauncher.ps1
2. Offline/change-control ZIP Use when you want all scripts, helpers, manifest and checksums in one version-aligned package. Download package ZIP
Linux is separate Do not use this PowerShell page for Linux deployments. Use the Linux Auditor page and Linux commands instead. Open Linux page
Windows PowerShell
PS> .\ScantideLauncher.ps1

Detect local network
Download/update required files
Run LAN scan or Local Device Check
! Optional radio discovery and CMDB comparison
Produce readable HTML report

Report: NetworkScan_20260623_104830.html
WindowsPowerShell + GUI Launcher
AgentlessNo endpoint agent install
EvidenceHTML reports
Choose the right page

Windows and Linux are now separated

This page is deliberately focused on the Windows PowerShell Auditor. Linux has a different installer, runtime model and credential handling, so it should not be buried inside the Windows instructions.

Windows PowerShell

Use this page when you want the GUI Launcher, ScantideLAN.ps1, Local Device Check, Windows Credential Manager, ServiceNow/CMDB comparison and Windows HTML reports.

Download Windows Launcher

Linux Auditor

Use the Linux page for the Linux command-line workflow, Linux local checks, Linux installer/uninstaller information and Linux credential notes.

Open Linux Auditor page

Android field checks

Use Auditor Android for mobile/on-site LAN visibility, quick local network review and Wi-Fi context without needing a Windows admin workstation.

Open Android Auditor
Plain wording for visitors: Windows admins should start with the Launcher. Linux users should use the Linux page. Android users should use the mobile Auditor.
What it does

One Windows entry point for the common audit jobs

The page is shorter now because the Launcher is the real entry point. The details belong in the manual and GUI tour; this page should explain what to download and why.

Internal network scan

Find reachable hosts, open services, web pages, TLS certificates, favicons, service hints, possible CVE context and CMDB gaps.

Local Device Check

Review the Windows machine itself: firewall, Defender/AV, updates, users, BitLocker, browser posture, certificates, listening ports and installed software.

Software lifecycle

Compare installed software against Scantide CVE and lifecycle intelligence, including latest observed versions and review candidates.

CMDB comparison

Compare discovered hosts with ServiceNow/CMDB data so unknown or undocumented assets become visible.

Radio/local discovery

Optional local discovery can add mDNS, SSDP/UPnP, WS-Discovery, Wi-Fi and Bluetooth/BLE context during authorized on-site checks.

Readable reports

HTML reports are designed for cleanup discussions: what was found, why it matters, and what should be reviewed next.

Authorized use only No brute forcing Evidence-oriented reports Windows Credential Manager support
Quick start

Recommended Windows workflow

Keep the first-run instruction simple. The Launcher is the product front door for Windows because it includes the download/update function.

1. Download the Launcher

Save ScantideLauncher.ps1 to a local folder on the Windows machine where you want to run the audit.

Download Launcher

2. Run it in PowerShell

Start the Launcher. Use its built-in download/update function to fetch the full Auditor files when needed.

.\ScantideLauncher.ps1

3. Choose the job

Run a Quick/Standard LAN scan, Local Device Check, Software review, CMDB comparison or a focused profile such as Hypervisor or Database.

See the GUI tour
Fallback: if your environment blocks in-app downloads or requires change control, use the full ZIP package and verify it with the SHA256 checksums.
Advanced downloads

Direct files for manual deployment

Most users do not need these individual downloads. They are here for controlled environments, troubleshooting, or offline packaging.

Full package ZIPVersion-aligned scripts, helpers, manifest and checksums.Download ZIP
SHA256SUMS.txtChecksum file for package and script verification.Download checksums
Package manifestMachine-readable package contents and version data.Download manifest
Version feedUsed by the Launcher to show available/latest Auditor version.Download feed
ScantideLAN.ps1Command-line LAN scanner for scripted or manual execution.Download
ScantideLocalCheck.ps1Windows local endpoint posture and software/CVE check.Download
Credential Manager helperStores Scantide and ServiceNow credentials in Windows Credential Manager.Download
Report combinerCombines multiple Auditor HTML reports into a broader overview.Download
Local discovery helpermDNS, SSDP/UPnP and WS-Discovery helper for local subnet discovery.Download
Radio helperOptional Wi-Fi, Wi-Fi Direct and Bluetooth/BLE discovery support.Download
Port helperPort profiles, protocol explanations and risk wording for Launcher tools.Download
OUI cacheOffline MAC vendor lookup file for ARP-discovered devices.Download
Manual fallback

PowerShell download fallback

Use this only when you do not want to use the Launcher’s built-in download function or the ZIP package.

Manual PowerShell download command
$dest = Join-Path $env:USERPROFILE 'Downloads\ScantideAuditor'
New-Item -ItemType Directory -Path $dest -Force | Out-Null

$base = 'https://www.scantide.com/helpfiles'
$files = @(
    'ScantideLauncher.ps1',
    'ScantideLAN.ps1',
    'ScantideHelper.ps1',
    'ScantideRadioHelper.ps1',
    'ScantidePortHelper.ps1',
    'ScantideCredentialManager.ps1',
    'ScantideFaviconHelper.ps1',
    'ScantideLocalCheck.ps1',
    'ScantideLocalProtocolHelper.ps1',
    'combine.ps1',
    'oui.csv',
    'ScantideLAN-version.json',
    'SHA256SUMS.txt',
    'package-manifest.json'
)

foreach ($name in $files) {
    $target = Join-Path $dest $name
    Write-Host "Downloading $name..." -ForegroundColor Cyan
    Invoke-WebRequest -Uri "$base/$name" -OutFile $target -UseBasicParsing -TimeoutSec 45
    Unblock-File -LiteralPath $target -ErrorAction SilentlyContinue
}

Write-Host ""
Write-Host "Downloaded Scantide Auditor PowerShell files to: $dest" -ForegroundColor Green
Write-Host "Run the Windows Launcher:" -ForegroundColor Yellow
Write-Host "  cd `"$dest`""
Write-Host "  .\ScantideLauncher.ps1"
Reports and docs

Show it before you run it

The easiest way to explain Scantide Auditor is to show the Launcher GUI and a safe anonymized report.

GUI tour

Shows the Launcher tabs and how Windows users start scans, update files and run tools.

Open GUI tour

Internal survey report

Safe anonymized example showing discovered hosts, services, TLS/web evidence and review points.

View example report

Local Device Check report

Example local endpoint posture and software review output.

View local report
Read full PowerShell manual Local Device Check page Software Watch page
FAQ

Common questions

Should Windows users download every script one by one?

No. Start with ScantideLauncher.ps1. The Launcher is the preferred Windows entry point and can download/update the rest of the required files.

When should I use the full ZIP?

Use the ZIP for offline use, change-controlled deployment, checksum verification or environments where in-app downloads are blocked.

Where are Linux instructions?

Linux is intentionally separated. Use the Scantide Auditor Linux page for Linux commands, installer/uninstaller information and Linux-specific credential handling.

Is this a hacking tool?

No. It is an authorized inventory and exposure review toolkit. It is not for brute forcing, exploitation or bypassing access controls.

Can it replace vulnerability management?

No. Treat CVE and lifecycle matches as review leads. They help you prioritize follow-up, but exact product, build, backporting and configuration still need verification.

Why keep Local Device Check on this page?

Because it is available from the Windows Launcher. It is part of the Windows admin workflow, while the detailed Local Device Check explanation remains on its own page.

Scantide product map

Which Scantide tool should I use?

Use the focused tool that matches where you are looking: public domain, browser behavior, Windows LAN, Linux host, Android field check or recurring monitoring.

Scantide Online

Public-domain and external attack-surface checks.

Run single scan

Dashboard

Recurring certificate/domain monitoring and evidence history.

Open dashboard

Observe

Browser-visible privacy, cookies, scripts, forms and headers.

Open Observe

Auditor PowerShell

Windows Launcher, LAN scanning and Local Device Check.

Open Windows Auditor

Auditor Linux

Linux local and command-line Auditor workflow.

Open Linux Auditor

Auditor Android

Mobile local network and field checks.

Open Android Auditor