Innovation took stage at Kaseya Connect 2025 and Kaseya’s risk management solutions were front and center. As regulatory demands grow, staying ahead of compliance challenges is essential for today’s IT professionals. Kaseya brought attendees up to speed on how they are meeting this need with enhanced features and expanded automations for vPenTest, Compliance Manager GRC and VulScan that simplify audit and compliance management.
vPenTest
Kicking things off, Ky Tran, Vice President of Operations, Vonahi Security, reviewed recent innovations in vPenTest, Kaseya’s comprehensive and automated pen testing solution.
Tran introduced several recent advancements for vPenTest. First, he announced that vPenTest has achieved CREST Certification for pen testing in Australasia and EMEA — a significant milestone. Tran also shared that vPenTest now offers grey box testing and expert-led security advisory services that can help IT professionals accurately interpret their pen test results to effectively analyze and remediate security risks.
Two new enhancements make vPenTest easier to use
The latest updates to vPenTest were highlighted in the presentation:
- Agent enhancement: The vPenTest agent, essential for delivering internal network penetration tests, has been upgraded to be faster, more secure and easier to use. These enhancements simplify and strengthen deployment across supported operating systems, making it easier for partners to deliver powerful security testing with confidence.
- Report findings enhancements: IT professionals receive clearer, more concise explanations of their test findings with improved detail on descriptions, security impact and actionable recommendations.
Next, Tran provided a look at upcoming integrations for vPenTest, including integration with DarkWeb ID to use credentials found on the dark web on pen tests, and an integration with BullPhish ID to capture credentials from phishing testing campaigns for use in vPenTest.
VPenTest has a bright future
Attendees then got a look at what’s next for vPenTest. Tran shared that IT professionals will soon be able to dynamically generate a tailored executive summary report for every client, enhanced by AI, using the latest industry and pen test findings. Smart ticketing with Autotask is also on the way. This integration will automatically create a support ticket to fix problems discovered during testing and rank those tickets based on the severity of the risk.
Tran closed his presentation by announcing that Vonahi will open a new data center to serve the EMEA region in 2025. With this expanded capability, vPenTest will automatically store and process EMEA customer data in our regional data center. New customers will be set up there, and existing ones will be migrated.
RapidFire Tools
Win Pham, Vice President of Product at RapidFire Tools, took the stage next to highlight the latest innovations in Compliance Manager GRC, the premier solution for managing compliance with any government regulation, industry standard or internal IT policy.
Say goodbye to one-time compliance checking of endpoints
Pham introduced the new Compliance Monitor feature, which adds continuous compliance monitoring capabilities to Compliance Manager GRC. Fully automated, Compliance Monitor verifies endpoint configuration settings in real-time and delivers smart remediation guidance to help teams resolve issues before they turn into violations.
He showed attendees how easy it is to use Compliance Monitor. Technicians simply:
- Install discovery agents on Windows machines
- Enable the Compliance Monitor feature
- Select the compliance standards to benchmark against
- View automated inspection results
- Remediate any uncovered misconfigurations or gaps
Centralized risk visibility is here
Next, Pham introduced Risk Manager, a new capability that gives IT professionals instant visibility into identified risks and corresponding response plans. Attendees learned how Risk Manager empowers IT professionals to centralize risk management, simplify mitigation efforts and communicate risk status to stakeholders.
Risk Manager helps IT professionals efficiently:
- Perform technical reviews and compliance assessments
- Generate a plan of action and milestones (POAM)
- Monitor risk data via an intuitive dashboard
- Track remediation progress, mitigation efforts and risk acceptance
Support for more standards is on the way
To close out his presentation, Pham announced that Compliance Manager GRC is expanding support for additional compliance standards, including:
- HPH Cybersecurity Performance Goals
- SMB1001
- CJIS Security Policy 6.0
VulScan
Pham then turned his attention to VulScan, Kaseya’s vulnerability scanning solution, starting with a review of the most recent enhancements.
Enjoy fast deployment with Docker containers
VulScan can now be installed using Docker containers, a lightweight, portable way to package software and its dependencies into a single unit. This approach helps facilitate a streamlined, low-maintenance installation process that works reliably across diverse client environments, while also simplifying operating system management.
Deploy unified discovery agents
Pham introduced a single lightweight agent that supports multiple Kaseya solutions, like Network Detective Pro, Compliance Manager GRC and VulScan. This unified agent allows IT professionals to deploy once and manage everything from a central interface, simplifying data collection for scanning, compliance and reporting tasks.
5 new platforms now supported
VulScan now supports deployment across multiple environments: Hyper-V, VMware, AWS EC2, Azure Compute and Linux and Windows Servers. This makes it easier to run vulnerability scans across hybrid, cloud and on-premises infrastructures.
Smarter issue management makes taking action seamless
Next, Pham introduced VulScan’s enhanced issue management capabilities. These upgrades enable IT professionals to take fast, informed action on scan results by:
- Marking vulnerabilities as false positives
- Accepting risk when mitigation isn’t feasible
- Identifying issues as mitigated once resolved
- Flagging issues as one-time exceptions to ignore until the next scan
This gives IT professionals greater flexibility in managing vulnerability data and tracking remediation workflows.
Enhanced reporting and visibility bring peace of mind
Pham showed attendees a preview of how VulScan’s upcoming enhanced reporting features deliver greater transparency and insight into security posture. A visually rich dashboard offers at-a-glance views of vulnerability trends, while weekly and monthly reports help track progress over time and demonstrate the impact of remediation efforts to internal teams and clients. Pham also offered a preview of an upcoming feature: executive report summaries that deliver high-level insights tailored for stakeholder and client communication.
Seamless integration with vPenTest
One of the most exciting announcements was the new integration between VulScan and vPenTest. Now, scan results from VulScan can be automatically imported into vPenTest, creating a unified view of vulnerabilities and streamlining the reporting process. This integration helps accelerate workflows and enhances visibility across both tools.
With these new features and integrations, VulScan continues to evolve to help IT professionals save time, reduce risk and strengthen security outcomes across any environment.
The innovations shared at the Kaseya Connect 2025 Product Showcase underscore Kaseya’s continued commitment to empowering IT professionals in a rapidly evolving regulatory landscape. With smarter automation, broader integration and enhanced features, Kaseya is simplifying compliance management and helping IT professionals stay ahead of client expectations, reduce manual effort and harness the power of AI and automation to deliver greater value with confidence.
