identify vulnerabilities and non compliant endpoints
That’s a pretty broad topic, but it sounds like that would be served by both BigFix Platform and BigFix Compliance. Define your policy in the Console and report results through the Compliance website. Where are you getting stuck, we should be able to help.