Documentation

Noxen docs

Everything you need to install Noxen, enrol your Linux fleet, run scans, read findings, export to a SIEM, and lock down whatever Noxen flags. Twenty pages covering every product feature, with working configuration snippets and screenshot walk-throughs.

Getting started

• The five-minute path

  • Install Noxen on macOS →
  • Run your first scan →

Adding hosts

Four onboarding paths — pick the fastest one for your setup.

• Onboarding paths

  • Add a host manually →
  • Import from ~/.ssh/config →
  • Discover hosts on your LAN →
  • Bulk paste host list →

Scanning

How the engine works, when scans run, what the agent does at 03:00.

• Scan execution

  • How the scan engine works →
  • Schedule nightly scans →
  • Batch scan all hosts →

Findings

Severity scoring, KEV / EPSS overlays, and what to do when something flags.

• Triage

  • How severity is scored →
  • Fix findings (CVEs, headers, TLS, admin surfaces) →

Exports & integrations

Three formats for human reports + machine pipelines, plus webhook delivery.

• Output formats

  • PDF, CSV, NDJSON exports →
  • Slack / Discord / Teams webhooks →
  • CIS, SOC 2, ISO 27001 mapping →

Reference

The deep technical pages. Bookmark these.

• Feed & checks

  • The CVE feed →
  • Write custom checks →

• App internals

  • Command palette & shortcuts →
  • Privacy & data flow →
  • System requirements →

Troubleshooting

Stuck? Most issues have a quick fix.

• Recipes

  • Common errors & fixes →

Other resources

Outside the docs:

• Live CVE feed dashboard — the same data Noxen scans against, browsable in the browser. Per-distro views for Ubuntu 24.04, Debian 12, Rocky 9 / AlmaLinux.
• Blog — long-form posts on homelab security, CVE triage, and the philosophy behind Noxen's flag-only-not-authenticate model.
• Support — direct help when this page didn't answer your question.