See the shape of what's allowed

Upload your security policies. See which ones overlap, which are load-bearing, and where attackers can move freely.

Scan my security policies
4 of 37 security controls add zero unique coverage. Vigilia shows you which ones — and which single policy your entire framework depends on.
CISO

“Which of our 37 NIST controls are just dead weight?”

Security Engineer

“Can a guest account reach admin in two steps through our policy gaps?”

Auditor

“Prove our framework has no single points of failure — with evidence, not checklists.”

KEYSTONE
SC-8-ENCRYPT-001 uniquely protects 415,176 states
REDUNDANT
4 controls fully shadowed by broader policies
BREACH PATH
Guest→Admin in 2 steps, 5 controls bypassed
HEALTH
Structural health 0.868

Compliance Dead Weight

Which security controls add zero protection? We find the ones fully shadowed by broader policies — and show you exactly which rule makes each one redundant.

Keystone Policies

One policy protecting 415,000 states with no backup. If it fails, the exposure is catastrophic. We find your keystones.

Attack Paths

Guest to admin in 2 steps, 5 controls bypassed. See the paths attackers can take through your gaps.

Policy Drift

Your NIST implementation says one thing. Your actual predicate does another. We catch the mismatch.

Change Impact

What happens if you add a control? Remove one? See the before and after in seconds.

Full Frameworks

NIST 800-53, CIS v8, PCI-DSS v4, ISO 27001. Pre-built packs or upload your own.

How it works

1

Upload your policies

Use the built-in NIST 800-53 pack or upload your own security controls as CSV.

2

We find what matters

Which policies carry the weight, which do nothing, and where attackers can move. No sampling, no approximation.

3

Get your findings

A rule health map. A breach playbook. A change-impact report. Download as PDF for your next audit committee.

Find blind spots in your security policy stack.

See which controls carry the weight and which ones do nothing. Know what breaks if a regulation changes.

Pricing

Start free. Upgrade when you need more.

Free

£0
  • Built-in starter pack (12 controls)
  • Upload up to 15 own rules
  • 3 analyses per month
  • Full results — nothing hidden
  • 1 attack path per analysis
  • No PDF export
Scan my security policies

Pro

£199/mo
Billed £2,388/yr
  • All policy packs (NIST, CIS, PCI-DSS, ISO 27001)
  • Unlimited rules and analyses
  • Unlimited attack paths
  • PDF analyst report
  • Results history
Start free trial

Enterprise

from £20,000/yr
  • Everything in Pro
  • Self-hosted deployment
  • SSO & air-gapped environments
  • Custom policy packs
  • Dedicated support
Talk to us