Vulnerability Management - Vulnerability Scanning, Analysis, and Reporting 

Task type
Increase your resilience
Readiness Level


DOJ offers both ongoing and ad hoc vulnerability scanning to help customers detect databases, operating systems, applications, web applications, and endpoints that may be vulnerable to attack while understanding the nature of the vulnerabilities. DOJ does not provide patching or flaw remediation, but DOJ collaborates with customers to ensure the outputs of vulnerability scans support flaw remediation efforts and provide recommendations for remediation of vulnerabilities. Capabilities include:

  • Vulnerability tools and scanning
  • Compliance scanning
  • Expert analysis and reporting
  • Ongoing vulnerability management
  • Ad hoc vulnerability assessment.


This service is offered through our federal service partner, the U.S. Department of Justice (DoJ). For more detailed information about this service, please visit the U.S. Department of Justice IT Services page.

You can also download the DOJ's cybersecurity shared services catalog.

For inquiries about DOJ-offered services or if interested in purchasing services, please email: