Jinn - Automated Server Security Platform
Vulnerability Scanning, Patch Management & Server Hardening - 100% On-Premise
80%
Less Security Overhead
100%
On-Premise Deployment
<24h
Mean Time to Patch
✓ Zero agent installation
✓ SSH-only connection
✓ Minimal attack surface
✓ Full data sovereignty
Your servers have vulnerabilities right now.
Jinn finds
and fixes them.
Patch Management ROI: Manual vs. Automated Security
Compare the real cost of manual vulnerability management against Jinn's automated scanning and patching - based on a 100-server infrastructure with a senior engineer at $75/h.
Without Jinn
With Jinn
Save $121,500 /year
Save more than $10,125 /month with Jinn
Based on 100 servers. Includes reduced breach risk, faster compliance audits, and fewer security incidents.
Real-Time Vulnerability Dashboard for IT Managers
Know the security status of every server without reading
a single log file. Jinn distills complex vulnerability
data into a clear traffic-light view designed for
non-technical stakeholders.
Green = Fully patched, no open CVEs ,
Yellow = Non-critical patches pending ,
Red = Critical vulnerabilities detected
Real-Time Security Dashboard
See every server's patch status, open CVEs, and risk score on a single screen. Filter by severity, team, or environment to find what needs attention right now.
- • Live CVE exposure count per server and fleet-wide
- • Patch compliance percentage by server group
- • Security score trending
Automated Compliance Reports
Generate audit-ready PDF reports in seconds, not days. Every patch, scan, and configuration change is logged with timestamps and attribution - ready for ISO 27001, SOC 2, and GDPR auditors.
- • One-click export for auditors and board presentations
- • Immutable audit trail with full change attribution
- • Compliance score tracking
Risk Reduction Metrics
Translate security operations into business metrics. Show the board exactly how your team is reducing risk, closing vulnerabilities faster, and staying ahead of threats.
- • Mean time to patch (MTTP) tracked per server group
- • Vulnerability remediation rate and SLA compliance
- • Overall security posture score with month-over-month trends
"Jinn's automated vulnerability scanning and patching reduced our security incident response time from days to hours. The executive dashboard gives me confidence to report our security posture to the board without relying on technical staff for translation. Best ROI of any security tool we've deployed."
- Rashid A., IT Security Director
Gulf Region Financial Services • 1,200+ servers managed
Infrastructure Security Management for DevOps & SRE Teams
Jinn handles the repetitive security work - scanning, patching, hardening, reporting - so your team can focus on architecture, automation, and scaling.
Server Inventory & Automated Asset Discovery
Automatically discover and catalog every server, VM, and bastion host across your infrastructure. Import assets from AWS, Azure, GCP, VMware, and Nutanix - or add them via SSH. Always know exactly what you're protecting.
Coming soon: network-based discovery to automatically detect and inventory devices across your subnets - no manual import needed.
Agentless Architecture - Nothing to Install
Jinn connects over SSH - no daemons, no packages, no open ports on your servers. This eliminates agent-related CVEs, simplifies firewall rules, and means there is zero software to update or maintain on managed hosts.
Automated Security Hardening & CIS Benchmarks
Enforce SSH configuration, kernel parameters, file permissions, and network policies across your fleet with one click. Pre-built profiles aligned with CIS Benchmarks let you harden servers consistently - and prove it in your next audit.
Zero-Downtime Patch Deployment
Schedule patches during maintenance windows, roll them out in batches, and let Jinn verify each server before moving to the next. Built-in rollback reverts changes automatically if health checks fail - so patching never causes downtime.
Multi-Cloud & Hybrid Infrastructure Support
Manage Linux and BSD servers across AWS, Azure, GCP, VMware, Nutanix, and bare-metal data centers from a single dashboard. One patching policy, one compliance view - regardless of where your infrastructure runs.
Compliance Audit Trail & Reporting
Every scan, patch, and configuration change is recorded with a timestamp, the user who triggered it, and a before/after diff. Export filtered reports for ISO 27001, SOC 2, PCI-DSS, or HIPAA auditors in one click.
Powered by Open-Source Technology
Jinn leverages InfraNinja - our open-source infrastructure automation library - for its core connectivity and execution layer. InfraNinja is available as a standalone tool for your own projects, while Jinn builds on top of it with enterprise features like vulnerability scanning, patch management, compliance reporting, and a full management dashboard.
View InfraNinja on GitHubRole-Based Access Control
Enforce least-privilege access across your security team. Each role sees only the data and actions relevant to their responsibilities.
Admins
Full platform access. Define patching policies, manage user accounts, configure integrations, and control global settings including hardening profiles and notification rules.
Managers
Read-only access to dashboards, security scores, and compliance reports. Generate and export audit documentation without the ability to modify policies or trigger deployments.
Engineers
Deploy patches, run scans, manage the server inventory, and apply hardening profiles. Full operational access to day-to-day security tasks without exposure to billing or user management.
On-Premise Security Platform with Full Data Sovereignty
Every component runs inside your network. No telemetry, no cloud callbacks, no third-party data processing. Your vulnerability data stays yours.
Offline CVE Vulnerability Scanning
Scan every package and library against the full CVE database - even without internet access. Update the local CVE feed via a secure offline transfer (USB, sneakernet, or bastion relay) so air-gapped networks stay current.
100% On-Premise Deployment
The web UI, scanning engine, CVE database, and reporting layer all run on a single VM inside your perimeter. No SaaS dependency, no external API calls, no data leaving your network.
Air-Gap Compatible
Purpose-built for classified, defense, and critical-infrastructure networks. Jinn operates fully disconnected - no DNS lookups, no NTP calls, no outbound traffic of any kind.
Agentless Architecture - SSH-Only Connection
Jinn authenticates via standard SSH keys and executes commands remotely. No listening ports, no resident processes, no package dependencies on managed servers - reducing your attack surface to a single, auditable protocol.
Built for the Gulf Region
Fully bilingual Arabic/English interface with native RTL support. Designed with GCC data-residency regulations in mind - deploy in UAE, Saudi Arabia, Qatar, Bahrain, Kuwait, or Oman while meeting local compliance requirements.
Single-VM Docker Compose Deployment
Run docker compose up on a single VM
and Jinn is ready. No Kubernetes cluster, no managed
database, no load balancer. One machine, one command,
full production deployment.
Native Cloud Provider Integration
Connect your AWS, GCP, Azure, VMware, or Nutanix accounts and Jinn automatically imports your server inventory. New instances are detected and added to scanning policies without manual intervention.
Coming Soon: Model Context Protocol (MCP) Integration
Jinn will expose your infrastructure data through the Model Context Protocol (MCP), so any compatible AI assistant - Claude, ChatGPT, or your own - will be able to query server status, analyze vulnerability trends, and suggest remediation steps in plain language.
Natural Language Queries
Ask "Which servers have critical CVEs older than 7 days?" or "Show me patch compliance for the production cluster" - and get structured answers pulled directly from Jinn's live data.
AI-Assisted Remediation
Let the AI correlate vulnerability data with your patching history to prioritize which servers to patch first, draft maintenance windows, and flag regressions before they escalate.
Jinn vs. Tenable, Nessus, OpenVAS: Comparison
Most tools stop at scanning. Jinn scans, patches, hardens, and reports - in one platform, deployed on your infrastructure.
| Feature | Jinn | Tenable/Nessus | OpenVAS | Manual Process |
|---|---|---|---|---|
| Setup Time | < 1 day | 1-2 weeks | 2-4 weeks | N/A |
| Automated Patching | ✓ | ✗ | ✗ | ✗ |
| Configuration Hardening | ✓ | ~ | ✗ | ✗ |
| Compliance Reports | ✓ | ✓ | ~ | ✗ |
| User-Friendly Dashboard | ✓ | ~ | ✗ | ✗ |
| Price (100 servers) | Contact us | $$$$$ | Free (DIY) | Staff cost |
| 24/7 Support | ✓ | ~ | ✗ | ✗ |
Why Enterprises Trust Jinn for Server Security
From fast-growing startups in Dubai to publicly listed enterprises across the GCC, security teams choose Jinn to automate vulnerability management, cut patch cycles from weeks to hours, and prove compliance without the spreadsheet overhead.
Scan, Patch, Harden, Report - One Platform
Vulnerability scanners tell you what's wrong. Jinn fixes it. Continuous CVE scanning feeds directly into automated patching and configuration hardening, with compliance reports generated at every step. No tool-switching, no manual handoffs.
"The only tool where we both find and fix vulnerabilities without switching platforms." - Ahmed A., DevOps Lead, Healthcare Provider
Built by Infrastructure Engineers
Jinn was created by Kalvad's security engineering team - people who have managed production fleets across GCC financial services, healthcare, government, and e-commerce. Every feature exists because a real operations team needed it.
"You can tell this was built by people who actually manage servers, not just scan them." - Fatima A., Senior SRE, E-commerce Platform
Dedicated Support, Not a Ticket Queue
Every customer gets a named technical account manager, 24/7 emergency response, and proactive health monitoring of their Jinn instance. We help you write custom policies, plan rollouts, and prepare for audits.
"Support responds in minutes, not days. They helped us customize policies for our unique compliance needs." - Mohammed A., CISO, Manufacturing Enterprise
Production-Ready in Hours, Not Months
Deploy Jinn with Docker Compose, point it at your servers via SSH, and run your first vulnerability scan - all in under a day. Pre-built hardening profiles and sensible defaults mean you start with strong coverage from day one.
"Went from signup to scanning 800 servers in under 2 days. Our previous tool took 3 months to configure." - Khalid A., Infrastructure Manager, SaaS Company
Enterprise-Grade Security & Trust
Zero-Trust Architecture
Every API call, SSH session, and user action is authenticated and authorized independently. All data is encrypted at rest and in transit. No implicit trust, no shared credentials.
Compliance Ready Out of the Box
Jinn supports data-residency-compliant deployments in every GCC country and generates documentation aligned with HIPAA, PCI-DSS, and NIST frameworks.
Data Sovereignty Guaranteed
Jinn is self-hosted by design. Vulnerability data, scan results, server credentials, and audit logs never leave your infrastructure. No cloud sync, no external analytics, no third-party access.
Security Guarantees
Frequently Asked Questions
How quickly can we get started with Jinn?
Most organizations complete their first vulnerability scan within 24 hours. The process is simple: deploy Jinn on a single VM via Docker Compose, add your servers by IP or import them from your cloud provider, and run a scan. Since Jinn is agentless, there is nothing to install on your servers - just provide SSH access. We recommend starting with a pilot group of 10-20 servers before rolling out fleet-wide.
Does Jinn support hybrid cloud and on-premise environments?
Yes. Jinn manages servers across AWS, Azure, GCP, VMware, Nutanix, private clouds, and bare-metal data centers from a single interface. You can import server inventories directly from cloud provider APIs or add on-premise hosts via SSH. Patching policies, hardening profiles, and compliance reports work identically regardless of where your infrastructure runs.
Can I try Jinn before purchasing?
Yes. We offer a personalized live demo where our engineering team walks you through the platform using your infrastructure requirements. You'll see real vulnerability scanning, patch deployment, and compliance reporting in action - not a slide deck. Book a demo and we'll tailor the session to your environment.
How does Jinn pricing work?
Jinn is sold as a yearly contract with straightforward per-server pricing and volume discounts for larger fleets. There are no per-user charges, no feature tiers, and no hidden fees — every customer gets the full platform including scanning, patching, hardening, and reporting, plus a dedicated technical account manager and a guaranteed SLA. Contact us for a custom quote based on your infrastructure size.
Is our vulnerability data safe? Where is it stored?
Jinn is fully self-hosted - all vulnerability data, scan results, server credentials, and audit logs are stored on your infrastructure and never transmitted externally. Data is encrypted at rest (AES-256) and in transit (TLS 1.3). For GCC customers, this means full compliance with UAE, Saudi, and regional data-residency regulations. Kalvad has no access to your data and never sells or shares customer information.
Can Jinn integrate with our SIEM, ticketing, or compliance tools?
Yes. Jinn's professional services team builds custom integrations with SIEM platforms (Splunk, QRadar, Elastic), ticketing systems (Jira, ServiceNow), and compliance frameworks specific to your industry. We have successfully deployed in highly regulated GCC sectors including banking, healthcare, government, oil and gas, and critical infrastructure - and can adapt Jinn to your exact compliance requirements.
Stop Patching Manually. Start Securing Automatically.
See how Jinn can cut your vulnerability remediation time by 80%, eliminate manual patch cycles, and keep your infrastructure compliant - all from a single self-hosted platform with zero cloud dependencies.
500+
Enterprises
100K+
Servers Protected
Self-Hosted
Complete Control