
Quasar Scan FAQ
Through over a decade of development, real-world testing, and refining, we understand the issues businesses and organisations of all sizes face when it comes to achieving PCI DSS compliance. Quasar Scan has been built to offer you a better way to create simple and sustainable compliance, reduce your risk, and protect your enterprise and your customers. Here are some of the common questions we get asked.

Quasar Scan takes care of enterprises of all types and sizes – from multinational companies and national organisations, to small brick and mortar shops and online retailers.
There are three main types of organisations and situations that use Quasar Scan:
- You are enthusiastic about data discovery and want to proactively improve your cardholder data processes and systems to keep you and your customers safe.
- You are about to be assessed by your QSA (Qualified Security Assessor), and are being asked to prove that you’re not storing any cardholder data and are PCI DSS compliant.
- You have had a data breach and need immediate professional support to mitigate any damage, improve your security, meet your obligations to your acquirer, and get your business back on track.
In short, scanning time depends on your system capabilities and how much data you’re storing. Quasar Scan’s flexible scanning options balance the need to remain PCI DSS compliant with allowing you to carry on with business as usual. You can choose to break up your scans and then add to them linearly, allowing Quasar Scan to scale up in a way that maximises your organisation’s specific capacity and completes your scan as quickly as possible, without sacrificing performance. All the while, your teams can watch scan progress and view results through their dashboard. This keeps all parties within your organisation happy.
The low-quality scanners in the market have cut corners and will carry out a ‘one-size-fits all’ scan, by ignoring unlikely data through initial broad filtering and using guesswork. They can also create a heavy load on your systems, disrupting your organisation’s productivity. This half-hearted approach will not only miss genuine credit card or personal data, it will also return many false positives – particularly as the cardholder industry changes. They will then spit out a confusing report that leaves you without clear direction or confidence – or requires a tonne more manual labour to sort through, unnecessarily draining time and money from your business. On the other end, some really good scanners are eye-wateringly expensive, which can make them unsustainable or completely out of reach.
Since 2010, our team have been developing a highly accurate system for specifically finding credit card data, and we back our approach. Quasar Scan looks at absolutely everything and then takes it all through a filtering process. You can choose to break up your scans and add to them linearly, to balance completing your scan as quickly as possible with maintaining system performance. Quasar Scan also empowers you to take action and become PCI DSS compliant, and one of our experienced analysts can be made available to make personal recommendations based on your final report.
Quasar Scan takes care of enterprises of all types and sizes – from multinational companies and national organisations, to small brick and mortar shops and online retailers.
There are three main types of organisations and situations that use Quasar Scan:
- You are enthusiastic about data discovery and want to proactively improve your cardholder data processes and systems to keep you and your customers safe.
- You are about to be assessed by your QSA (Qualified Security Assessor), and are being asked to prove that you’re not storing any cardholder data and are PCI DSS compliant.
- You have had a data breach and need immediate professional support to mitigate any damage, improve your security, meet your obligations to your acquirer, and get your business back on track.
In short, scanning time depends on your system capabilities and how much data you’re storing. Quasar Scan’s flexible scanning options balance the need to remain PCI DSS compliant with allowing you to carry on with business as usual. You can choose to break up your scans and then add to them linearly, allowing Quasar Scan to scale up in a way that maximises your organisation’s specific capacity and completes your scan as quickly as possible, without sacrificing performance. All the while, your teams can watch scan progress and view results through their dashboard. This keeps all parties within your organisation happy.
The low-quality scanners in the market have cut corners and will carry out a ‘one-size-fits all’ scan, by ignoring unlikely data through initial broad filtering and using guesswork. They can also create a heavy load on your systems, disrupting your organisation’s productivity. This half-hearted approach will not only miss genuine credit card or personal data, it will also return many false positives – particularly as the cardholder industry changes. They will then spit out a confusing report that leaves you without clear direction or confidence – or requires a tonne more manual labour to sort through, unnecessarily draining time and money from your business. On the other end, some really good scanners are eye-wateringly expensive, which can make them unsustainable or completely out of reach.
Since 2010, our team have been developing a highly accurate system for specifically finding credit card data, and we back our approach. Quasar Scan looks at absolutely everything and then takes it all through a filtering process. You can choose to break up your scans and add to them linearly, to balance completing your scan as quickly as possible with maintaining system performance. Quasar Scan also empowers you to take action and become PCI DSS compliant, and one of our experienced analysts can be made available to make personal recommendations based on your final report.
In just a few moments, you can download your Quasar Scan trial, and run a free scan on your system to see your level of risk. You don’t have to book a demo to get your hands on some valuable answers for your business or organisation! Once complete, the viewer will tell you exactly how many cards are stored in your systems, but it won’t reveal their exact locations. By going on to purchase a licence, the specific locations will be revealed and allow for targeted remediation work to take place.
Quasar requires the following ports to be open for the Server and Agent to communicate:
- TCP 55555
- TCP 55557
- TCP 55559
Quasar Scan’s proprietary searching and filtering methods are extremely precise, particularly in comparison to alternative products, which does result in Quasar Scan creating far fewer false positives.
There are several situations where New Zealand data triggers a false positive. This includes some bank accounts from Kiwibank and HSBC. Both of these will be shown as a match for Diners Club International. FlyBuys numbers are automatically filtered out as they are a known false positive. However with Quasar Scan’s features, such as customisable filtering and BINs, you can cut out even more false positives in your scans, and save time and cost trawling through results.
In just a few moments, you can download your Quasar Scan trial, and run a free scan on your system to see your level of risk. You don’t have to book a demo to get your hands on some valuable answers for your business or organisation! Once complete, the viewer will tell you exactly how many cards are stored in your systems, but it won’t reveal their exact locations. By going on to purchase a licence, the specific locations will be revealed and allow for targeted remediation work to take place.
Quasar requires the following ports to be open for the Server and Agent to communicate:
- TCP 55555
- TCP 55557
- TCP 55559
Quasar Scan’s proprietary searching and filtering methods are extremely precise, particularly in comparison to alternative products, which does result in Quasar Scan creating far fewer false positives.
There are several situations where New Zealand data triggers a false positive. This includes some bank accounts from Kiwibank and HSBC. Both of these will be shown as a match for Diners Club International. FlyBuys numbers are automatically filtered out as they are a known false positive. However with Quasar Scan’s features, such as customisable filtering and BINs, you can cut out even more false positives in your scans, and save time and cost trawling through results.
Pricing is based on the number of licences you require, the size of your environment, and how the system is deployed. Please contact our expert team for more details.
Your Quasar Scan licence is valid for one year from date of issue. Throughout that time, you can continue to run scans to mitigate your risk, support sustainable PCI DSS compliance, and protect yourself and your customers!
Pricing is based on the number of licences you require, the size of your environment, and how the system is deployed. Please contact our expert team for more details.
Your Quasar Scan licence is valid for one year from date of issue. Throughout that time, you can continue to run scans to mitigate your risk, support sustainable PCI DSS compliance, and protect yourself and your customers!

Eliminate the fear of the unknown. Find your at-risk cardholder data now!

User Guide
When you download Quasar Scan, the all-in-one installation of both the server and viewer makes it easy and fast to get started with your first scan.
You’ll also find detailed support in our User Guide, to connect and scale at pace.