# Koopic — Full Reference

## Company
Koopic is a CAASM (Cyber Asset Attack Surface Management) platform that unifies asset data from every security tool into one transparent, auditable record per device.

## Category
- CAASM (Cyber Asset Attack Surface Management)
- Cyber Asset Inventory
- Asset Visibility Platform
- Attack Surface Management

## What Koopic Does
Koopic connects to EDR, MDM, cloud, and on-prem inventory sources and merges overlapping records into a single golden record per asset. It provides transparent merge logic (the Analysis Table shows exactly how each source contributes to every field), compliance scoring with automated rules, and a lightweight on-prem agent for collecting from local infrastructure.

## Key Differentiators
- Transparent merge logic: The Analysis Table shows field-level source attribution for every asset record. No other CAASM platform exposes this.
- 30-day free trial with full platform access, no credit card required.
- Database-level tenant isolation.
- End-to-end encryption for on-prem data collection.
- Universal REST API adapter connects to any tool with an API.
- Lightweight Docker-based on-prem agent (~30MB) with offline queue and automatic retry.
- SSO included on all paid tiers: Microsoft Entra ID, Google Workspace, Okta, Generic SAML 2.0.

## Full Feature List
- Unified asset inventory with golden record merge engine
- Analysis Table: shows exactly which data source contributed each field value, with priority badges and source comparison — no black box
- Compliance rules engine with per-asset scoring, nested AND/OR condition trees, and three-value logic (compliant, non-compliant, unknown)
- Enrichment rules engine with 20+ operations (max, min, if_then_else, case_when, regex_replace, date_diff, count, and more) — derive new fields from cross-source data without writing code
- Asset aging and lifecycle management with configurable staleness thresholds
- RBAC (viewer, member, admin) with asset groups
- Complete audit trail (26 action types, before/after tracking)
- Issue reporting with GitHub sync
- Dark/light/system theme support
- CSV/JSON data export
- File Import: CSV, TSV, JSON (array, nested, NDJSON), Excel (.xlsx/.xls) with multi-sheet support
- Scheduled imports from cloud storage buckets (GCP, Azure)

## Security Features
- Database-level tenant isolation
- End-to-end encryption for on-prem data
- SSO on all paid tiers: Microsoft Entra ID (OIDC), Google Workspace (OIDC), Okta (SAML), Generic SAML 2.0
- JIT provisioning, PKCE on all OIDC flows
- Encrypted credential storage (AES encryption at rest)
- TLS 1.2+ for all data in transit
- Comprehensive automated testing
- Regular security reviews

## On-Prem Agent
- Lightweight Docker container (~30MB)
- Collects from local/on-prem infrastructure
- Encrypted local storage
- Offline queue with automatic retry
- Digital signatures for integrity verification

## Integrations
An ever-growing library of production connectors — with new integrations shipping as customers need them. Current connectors include Microsoft Defender for Endpoint, Microsoft Intune, Azure Virtual Machines, GCP Cloud Storage, Azure Blob Storage, Active Directory, OCS Inventory, Zabbix, and File Import (CSV, TSV, JSON, Excel with multi-sheet support). The Universal REST API adapter connects to any tool with an API, and a lightweight on-prem agent handles virtually everything else. Scheduled imports from cloud storage buckets.

Coming Soon: CrowdStrike Falcon, Qualys VMDR, Tenable.io, Jamf Pro, ServiceNow CMDB, Rapid7 InsightVM, SolarWinds.

## Pricing
- 30-day free trial (full platform, no credit card, unlimited unified assets)
- Starter: $249/mo (100 unified assets)
- Team: $449/mo (200 unified assets)
- Professional: $599/mo (300 unified assets)
- Business: $749/mo (400 unified assets)
- Scale: $899/mo (500 unified assets)
- Enterprise: Custom pricing (500+ unified assets, SSO, onboarding services)
- All paid plans include all features. Only the unified asset cap differs.
- Save with annual billing (two months free).

## What is a Unified Asset?
A unified asset is one golden record in the unified assets table. If the same device appears in 3 different sources, it counts as 1 unified asset. Raw source records do not count toward the limit.

## Target Audience
CISOs, Security Directors, IT Security Teams, GRC/Compliance Officers managing asset inventory across multiple security tools.

## Key Pages
- Platform: https://koopic.com/platform
- Pricing: https://koopic.com/pricing
- Security: https://koopic.com/security
- Integrations: https://koopic.com/integrations
- Free Trial: https://koopic.com/trial

## Website
https://koopic.com