OpnViking ApS
Know exactly where your Linux servers are exposed.
Fixed-price security audit. Delivered in 5 days. No retainer.
Book your audit — €2,000
One audit. One report. One price.
Most security consultancies sell projects — scoping calls, proposals, retainers, and invoices that grow. OpnViking works differently.
We turned 20 years of Linux and open source expertise into a single, contained product: the Linux Hardening Snapshot. You get read-only access to your servers, we run the audit, and you receive a professional PDF report within 5 business days. No ongoing engagement unless you want one.
The report is written for two audiences: an executive summary in plain language for founders and CTOs, and technical findings with copy-paste remediation commands for your sysadmin team.
Open. Compliant. Yours.
- No vendor lock-in. No proprietary tooling.
- No retainer required. One engagement, one price.
- 20+ years Linux & open source experience.
- Read-only access — your servers stay untouched.
Kubernetes Security Add-On
A CIS Kubernetes Benchmark audit for teams running self-hosted or managed Kubernetes — EKS, GKE, or AKS. We run kube-bench, review RBAC configuration, network policies, etcd encryption, kubelet settings, and audit logging. Nothing permanently installed on your cluster. Available as an add-on (+€1,200) or standalone (€3,000).
kube-bench — CIS Kubernetes Benchmark
Automated scan against all 5 CIS Kubernetes Benchmark sections. Runs as a Job on your cluster and cleans up after itself. Nothing permanent.
RBAC & cluster-admin review
We check who holds cluster-admin privileges, review ClusterRoleBindings, and flag overly broad RBAC assignments that create privilege escalation risk.
etcd encryption & network policies
We verify etcd encryption at rest, check for missing network policies across namespaces, and confirm Pod Security Admission is active.
+€1,200 add-on or €3,000 standalone
Add it to any Linux Snapshot tier for a flat +€1,200 — covers up to 2 Kubernetes clusters. Additional clusters quoted on request. Standalone: €3,000. Full Stack Bundle (Linux + Docker + Kubernetes): €4,500.
Docker Security Add-On
A CIS Docker Benchmark audit added to your Linux Hardening Snapshot — or standalone. We check your Docker daemon configuration, per-container risk (privileged mode, root user, host network, mounted Docker socket), image practices, file permissions on Docker paths, and audit rules. Nothing installed on your host. Available as an add-on (+€800) or standalone (€1,500).
CIS Docker Benchmark — all 6 sections
Host config, daemon configuration, config file permissions, container images, container runtime, and Docker security operations.
Per-container risk assessment
We check every running container for privileged mode, host network, root user, mounted Docker socket, and added capabilities.
Daemon configuration review
daemon.json, TLS status, logging driver, live-restore, and inter-container communication settings checked against CIS controls.
+€800 add-on or €1,500 standalone
Add it to any Linux Snapshot tier for a flat +€800 — regardless of server count. Standalone without a Linux Snapshot: €1,500 for up to 3 servers, larger environments quoted on request.
Full Stack Bundle
Linux + Docker + Kubernetes in one engagement. One collection script, one report, one debrief call. The best value for SaaS companies and scale-ups running containerised workloads on Linux. Covers CIS Benchmark for all three layers — host OS, container runtime, and orchestration. 5-day delivery. 60-minute debrief included. Pricing: 1–3 servers €4,500 · 4–8 servers €6,000 · 9–15 servers €8,500 · 16+ servers quoted on request.
Three audits. One report.
Linux hardening, Docker CIS Benchmark, and Kubernetes CIS Benchmark findings in a single prioritised PDF. One executive summary. One action plan.
From €4,500 — save up to €700 vs. separate
1–3 servers: €4,500 (save €700) · 4–8 servers: €6,000 · 9–15 servers: €8,500 · 16+ on request. Always cheaper than buying Linux + Docker + Kubernetes separately.
5-day delivery. 60-min debrief.
Same delivery window as the base product. The debrief call is extended to 60 minutes to cover findings across all three layers properly.
Built for growing SaaS teams
Ideal when you have Linux servers running Docker with Kubernetes on top — the most common setup for SaaS companies facing their first compliance audit.
Linux Hardening Snapshot
A full CIS Benchmark audit of your Linux servers — RHEL, Rocky, Debian, Ubuntu, or SUSE. We check SSH configuration, file permissions, kernel parameters, running services, user accounts, audit daemon, package integrity, and firewall. You receive a prioritised PDF report with an executive summary in plain language and copy-paste remediation commands for every issue found. 5-day delivery. Nothing installed on your servers. Pricing is based on the number of servers in scope: 1–3 servers €2,000 · 4–8 servers €3,500 · 9–15 servers €5,500 · 16+ servers quoted on request.
From €2,000 — 5-day delivery
1–3 servers: €2,000 · 4–8 servers: €3,500 · 9–15 servers: €5,500 · 16+ servers: custom quote. Fixed price per tier. No retainer, no hourly billing, no surprises.
Prioritised PDF report
Findings sorted by severity — CRITICAL, HIGH, MEDIUM, LOW — with copy-paste remediation commands your team can act on immediately.
CIS Benchmark & NIS2 aligned
Every finding mapped to NIS2 Article 21 and ISO 27001 Annex A. The report is written to satisfy auditors, not just sysadmins.
Nothing installed on your servers
Our read-only script collects configuration data only. No packages installed, no changes made, no persistent access.
OpnViking vs. Doing Nothing
Estimate your audit cost
// configure your environment · get instant pricing
All prices excl. VAT · 16+ servers quoted on request
Why OpnViking
Industries We Serve
SaaS & Software Vendors
Customer security questionnaires now ask about your Linux hardening posture. Our report gives you documented evidence of a formal CIS Benchmark audit — ready to share with enterprise buyers.
Critical Infrastructure
NIS2 applies directly to operators of critical infrastructure. We audit Linux systems against the security controls NIS2 requires — and deliver a report your compliance team can submit.
Government & Public Sector
Public sector organisations require EU-hosted, open-standards infrastructure and documented security practices. We audit, report, and stay out of the way.
FinTech
DORA, NIS2, and GDPR create real audit obligations for FinTech companies operating in the EU. Our report is written to satisfy technical auditors and risk committees.
Healthcare & MedTech
Patient data runs on Linux servers. GDPR and HIPAA require documented security controls. We audit the infrastructure layer so you can demonstrate compliance with confidence.
Research & Education
Universities and research institutes run Linux at scale and often lack dedicated security staff. A fixed-price audit gives you an actionable picture of your exposure without a long engagement.
Technologies
Ready to know where you stand?
Book your audit
Book your Linux Hardening Snapshot — €2,000 flat, delivered in 5 business days.
No retainer. No ongoing commitment. Fill in the form and we will confirm scope and send payment details within one business day. Or email us directly at hej@opnviking.com.
Not sure which product fits? Describe your setup in the message field and we will recommend the right scope.