
Strategic Exposure Remediation Platform
vRx
Vulnerability Discovery, Prioritisation & Remediation Unified
Overview
vRx (by Vicarius) is a comprehensive SaaS vulnerability management platform combining asset discovery, risk-based vulnerability prioritisation, built-in patch management, and unique Patchless Protection™ in a single lightweight-agent solution. X-TAGS contextual prioritisation layers CVE metrics, real-world exploitability indicators, and AI context to surface the vulnerabilities that matter most. Covers Windows, macOS, Linux, and proprietary/legacy software — including 0-day detection and automated remediation actions.
Who It's For
Key Differentiators
- Unique Patchless Protection™: applies runtime controls when a patch is unavailable or cannot be deployed
- 0-Day Detection: identifies and mitigates exploits before vendor patches are released
- X-TAGS contextual prioritisation: CVE scoring + exploitability indicators + AI context layered together
- Built-in patch management for Windows, macOS, and Linux — no separate patching tool needed
- 360-degree asset awareness: real-time inventory across servers, workstations, cloud, and remote endpoints
- Auto-Actions: automate repetitive remediation tasks and reduce analyst toil
- Supports proprietary and legacy software — coverage beyond standard OS patches
- Fully SaaS, WFH-friendly, lightweight agent — no infrastructure, no on-prem hardware
- Multi-tenancy and MSSP model supported — manage multiple clients from one console
- Competitive vs Tenable, Qualys, Rapid7, ManageEngine, WSUS, and AutoMox on all key features
Competitive Positioning
vs. Tenable (Tenable.io / Nessus)
- ›vRx has Patchless Protection™ — Tenable cannot protect endpoints when a patch is unavailable
- ›vRx has 0-Day detection — Tenable has no 0-day mitigation capability
- ›vRx includes built-in patch management — Tenable is scan-only with no remediation
- ›vRx's X-TAGS provides richer contextual prioritisation including AI-layered business context
vs. Qualys VMDR
- ›vRx includes built-in patch management — Qualys Patch Management is a costly add-on
- ›vRx's Patchless Protection covers vulnerabilities Qualys cannot patch
- ›vRx supports proprietary software coverage beyond Qualys' standard CVE database
- ›vRx is a simpler, lighter deployment — no complex agent or infrastructure overhead
vs. Rapid7 InsightVM
- ›vRx unifies VM + patch management + patchless protection in one platform — Rapid7 is VM-only
- ›vRx includes 0-day detection and automated remediation — Rapid7 lacks both
- ›vRx supports MSSP multi-tenancy natively — Rapid7 requires separate licensing per customer
vs. WSUS / ManageEngine
- ›vRx covers Windows, macOS, and Linux — WSUS is Windows-only
- ›vRx includes vulnerability prioritisation and 0-day detection — WSUS has neither
- ›vRx's Patchless Protection fills the gap when patches cannot be deployed
- ›vRx is cloud-native and WFH-ready — WSUS requires on-premises infrastructure
Full partner battle cards, pricing intelligence, and objection-handling guides available in the partner portal.
Partner Use Cases
Replacing Tenable with Integrated Patch Management in One Platform
A partner's enterprise client is running Tenable.io for vulnerability scanning and WSUS for Windows patching — two separate tools with no automated bridge between them. vRx replaces both with a unified platform that discovers vulnerabilities, prioritises them using X-TAGS contextual scoring, and deploys patches directly — including for third-party and legacy applications that WSUS does not manage. Patchless Protection™ addresses vulnerabilities where patches are not yet available, closing the gap that WSUS and Tenable together left open.
Multi-Client Vulnerability Management as a Managed Service
An MSSP partner uses vRx's native multi-tenant console to manage vulnerability programmes for 20 clients from a single platform. Each client has a separate, isolated view of their vulnerability posture, with monthly risk reports generated automatically and pushed to the MSSP's service delivery team. The partner delivers a consistent, repeatable VM service at predictable per-device economics, with Patchless Protection™ and 0-day detection as premium differentiators over basic scanner-only managed services.
Protecting Endpoints Against 0-Day Vulnerabilities Before Patches Arrive
A critical 0-day vulnerability is disclosed affecting a widely-used application deployed across a partner's client base. Vendor patches will not be available for 7–14 days. vRx's 0-Day Detection identifies the affected endpoints immediately, and Patchless Protection™ applies runtime controls to block known exploitation paths within hours of disclosure — providing protection during the window when the client is most exposed. The partner demonstrates measurable risk reduction before a single vendor patch is deployed.
Frequently Asked Questions
What is Patchless Protection™ and when does it apply?
Patchless Protection™ is a vRx capability that applies runtime security controls to protect against a known vulnerability when a vendor patch is unavailable, untested for production, or cannot be deployed without disrupting business operations. It works by blocking known exploitation paths at the OS or process level — providing measurable protection during the patch lag window that exists for most organisations after a vulnerability is disclosed.
How does X-TAGS prioritisation work?
X-TAGS is vRx's contextual risk scoring engine. It layers CVSS base scores with real-world exploitability indicators (known exploits in the wild, active threat actor usage, exploit kit availability) and AI-generated context — producing a prioritised risk score that reflects true business exposure, not just theoretical CVE severity. This eliminates the common problem of teams facing thousands of medium-severity CVEs with no actionable priority order.
Can vRx manage patches for third-party and legacy software?
Yes. vRx supports patch management and vulnerability coverage for Windows, macOS, Linux, and a wide range of proprietary and legacy software applications beyond the standard OS patch databases covered by WSUS or basic VM tools. This is particularly valuable for organisations running older enterprise software where vendor patch availability is inconsistent or delayed.
Is vRx suitable for MSSPs managing multiple clients?
Yes. vRx supports multi-tenancy natively — MSSPs can manage vulnerability programmes for multiple clients from a single console with separate client views, reporting, and configuration. Each client environment is fully isolated. vRx MSSP partner pricing is available through CRS.
How does vRx differ from running a vulnerability scanner alongside a separate patch management tool?
Separating scanning from patching creates workflow gaps — vulnerabilities are discovered in one tool and actioned in another, with no automated prioritisation or deployment bridge between them. vRx unifies discovery, contextual prioritisation, and patch deployment in a single platform. It also adds Patchless Protection™ and 0-day detection — capabilities that no scanner-only tool can match and that keep endpoints protected even when patches are unavailable.
Partner Intelligence Available
Partner pricing, discount tiers, detailed battle cards, and full sales enablement content for vRx are available exclusively to authorized CRS partners.
Become a CRS Partner
Get exclusive partner pricing, sales tools, and enablement resources for vRx.
Apply for Access Partner Sign InVendor Website
vicarius.ioTalk to a Specialist



