21 free tools · No login
Every Matproof tool, in one place
Free scanners, framework readiness assessments, scope checkers, calculators. Most run in seconds; the deepest assessments take ~15 minutes. Use them standalone or stack them — every tool emails you a structured report you can share with your team.
Public-data audits
Free scanners
Instant or near-instant audits based on DNS, HTTP headers, HTML, and public job postings. No login. Some require an email to send the full report.
Compliance gap scanner
8-signal audit: DMARC, security headers, /trust page, GDPR policy clauses, consent management, SOC 2 in-progress language, privacy freshness, open compliance roles. Email-gated full report. ~60 seconds.
Open tool →
Free pentest scan
Public-surface pentest: TLS, security headers, cookies, exposed paths, DNS, JS bundle. AI-analyzed findings with severity scoring. ~3 minutes. Email-gated for the full report.
Open tool →
DMARC checker
Verify your domain's DMARC policy. Common NIS2 audit finding, fastest to fix.
Open tool →
Security headers check
HSTS, CSP, Permissions-Policy, X-Frame-Options, X-Content-Type-Options. NIS2 + BSI Grundschutz relevant.
Open tool →
Pentest check
External attack-surface review for your domain. Queued via Sentinel pen-test engine.
Open tool →
NIS2 transposition tracker
Live status across 27 EU Member States — national law name, deadlines, supervisory authorities, fines, infringement proceedings.
Open tool →
Self-assessments
Readiness assessments
Multi-question quizzes that classify or score your current state and email a structured report you can share with your team. ~5–15 minutes each.
NIS2 readiness assessment
Score your NIS2 implementation maturity across 14+ measures. Outputs prioritized roadmap.
Open tool →
DORA readiness assessment
Operational resilience for financial entities. Score across DORA pillars + remediation plan.
Open tool →
GDPR readiness assessment
Data-protection posture across DPO, SCCs, DPIA, breach notification, records of processing.
Open tool →
ISO 27001 readiness assessment
Annex A control coverage, ISMS maturity, gap-to-certification timeline.
Open tool →
SOC 2 readiness assessment
Trust services criteria coverage, evidence collection gaps, time-to-attestation estimate.
Open tool →
EU AI Act readiness assessment
Risk classification (prohibited / high-risk / GPAI), foundation model card, post-market monitoring.
Open tool →
Cyber Resilience Act readiness
CRA scope, security requirements, vulnerability handling for products with digital elements.
Open tool →
CSRD readiness assessment
Sustainability reporting readiness — ESRS coverage, double materiality, disclosure mapping.
Open tool →
Scope & finders
Which regulations apply?
Quick scope checks to figure out which frameworks you actually need to comply with — before you commit to a multi-month project.
NIS2 quick checker
Are you under NIS2? Quick scope question, ~2 minutes.
Open tool →
NIS2 Betroffenheitsprüfung (DE)
Detaillierte Klassifizierung nach NIS2-Richtlinie + NIS2UmsuCG. Größe, Sektor, Sondersituationen.
Open tool →
Framework finder
Tell us your industry, size, and geography — we map the compliance frameworks that apply.
Open tool →
Framework selector
Personalized framework recommendation based on your context and goals.
Open tool →
Cost & ROI
Calculators & analysis
Quantify cost, savings, and overlap across frameworks.
Compliance cost calculator
Estimate the true cost of getting audit-ready vs. staying as-is, by framework + team size.
Open tool →
ROI calculator
Hours saved + dollars-per-year on automated evidence collection, policy generation, control mapping.
Open tool →
Multi-framework overlap
Which controls are shared across NIS2, DORA, ISO 27001, SOC 2, GDPR? Map once, reuse everywhere.
Open tool →
Want all of this — but actually implemented?
These tools tell you where the gaps are. Matproof helps you close them — most teams audit-ready in 4–6 weeks for NIS2, DORA, GDPR, ISO 27001, SOC 2, EU AI Act.
Book a 20-minute call