Product Listings
Microsoft Defender External Attack Surface Management software is designed to help organizations identify, assess, and monitor external-facing digital assets such as domains, IP addresses, and cloud services. The software provides continuous discovery of internet-exposed resources and evaluates potential vulnerabilities that may be exploited by malicious actors. It aggregates and analyzes data to help security teams understand and manage their external attack surface, enabling proactive security measures. The software supports risk prioritization and remediation workflows to reduce exposure and address vulnerabilities before they can be leveraged in cyber attacks. It aims to support organizations in strengthening their overall security posture by providing visibility and insights into external risks.
RiskProfiler is an External Attack Surface Management platform that strengthens your organization's security posture by providing visibility into external-facing assets and threats. Using AI, machine learning, and proprietary algorithms, it leverages open-source intelligence to manage domains, IPs, DNS records, and more through a unified asset inventory. It prioritizes remediation by categorizing assets based on criticality to analyze exposures with real-time threat intelligence.
The platform mitigates risks through continuous scans to identify vulnerabilities, outdated software, shadow IT, and unmanaged assets. RiskProfiler tracks supply chain threats and maps attack paths using a unified graph database, showing how attackers can exploit combined threats across the brand, supply chain, and cloud environments.
The Halo Security attack surface management platform is designed to help organizations see themselves from the attacker's perspective. The fully agentless solution combines automated external asset discovery, vulnerability scanning, and manual penetration testing to uncover risks across the modern attack surface.
Falcon Surface is a software platform designed to provide endpoint protection and threat detection for organizations. The software leverages cloud-based analytics to monitor and analyze activity across endpoints, identifying potential vulnerabilities and malicious behavior. Its features include real-time monitoring, incident response capabilities, and automated remediation processes, aiming to secure devices from a range of cyber threats. Falcon Surface integrates with other security tools to centralize management and reporting, addressing the business problem of preventing unauthorized access and mitigating risks associated with malware and ransomware attacks. The software is positioned to support security teams in managing and reducing the impact of security incidents.
Cortex Xpanse is a software designed to provide attack surface management by continuously discovering, monitoring, and managing an organization’s internet-facing assets. The software identifies exposed assets and potential risks by automatically scanning the global internet, helping organizations gain visibility into unknown or unmanaged systems. Cortex Xpanse enables security teams to detect vulnerabilities, misconfigurations, and policy violations across their external attack surface. The software assists in reducing the risk of cyber threats by providing insights and context for remediation, supporting efforts to maintain compliance and strengthen overall security posture.
CyCognito Platform is a software designed to help organizations identify and manage security risks across their external attack surface. By automatically discovering assets and assessing vulnerabilities, the software enables continuous monitoring of externally exposed systems and applications. CyCognito Platform utilizes reconnaissance techniques to provide comprehensive visibility of unknown, unmanaged, and unprotected assets that could be targeted in cyber attacks. The software delivers actionable insights to prioritize remediation efforts, facilitating proactive risk reduction and supporting compliance initiatives. Through automated analysis and contextual risk assessment, CyCognito Platform addresses the challenge of shadow IT and asset sprawl, assisting security teams in reducing their exposure to threats.
Bitsight Cyber Risk Intelligence is a software designed to provide organizations with insights into cyber risk by analyzing and monitoring security performance data from both internal systems and external third parties. The software aggregates information from various sources to assess vulnerability exposure, threat severity, and overall security posture. It enables businesses to identify potential risk areas, evaluate the effectiveness of security controls, and benchmark their cyber resilience against industry standards. By delivering continuous risk assessments and actionable intelligence, the software supports decision-making processes related to security investments, vendor management, and regulatory compliance. The primary business problem addressed involves the need for continuous visibility into cybersecurity risks and the capacity to manage and mitigate those risks effectively.
Cyble Vision is a software designed to provide organizations with threat intelligence by monitoring and analyzing data from the surface web, deep web, and dark web. The software offers real-time alerts on potential risks such as data breaches, leaked credentials, exposed sensitive information, and threat actor activities. Cyble Vision enables businesses to understand and assess external cybersecurity threats, facilitating early detection and mitigation of risks. The software provides features such as dashboard-driven threat monitoring, customizable alerting, and detailed reporting, supporting security teams in making informed decisions and strengthening overall organizational security posture.
Mandiant Advantage Attack Surface Management, a module of the Mandiant Advantage platform, combines
extended enterprise visibility and continuous monitoring capabilities infused with the latest Mandiant Advantage Threat Intelligence to help organizations discover exposures and analyze internet assets across today’s dynamic, distributed and shared environments.
Mandiant Advantage Attack Surface Management provides cyber security teams with a comprehensive, true view of their environment through the eyes of the attacker. This module operationalizes attacker intelligence to transform security programs from reactive mode to proactive.
DARKIVORE, is a comprehensive Brand Protection, Cyberthreat Intelligence and Digital Risk Protection Platform, that curbs all hacking activities right from the start. DARKIVORE pre-emptively neutralizes cyber-attacks such as data breaches, brand impersonations and phishing scams, by swiftly detecting and capturing them from the surface, deep and dark web. In addition to preventing attacks, the platform monitors your digital footprint, limits breaches and even assists in generating compliance reports. DARKIVORE offers a range of features that cater to various entities and organizations, accessible through three distinct bundles: the comprehensive Digital Risk Protection bundle, the Brand Protection bundle, and the Attack Surface & Threat Intelligence bundle. This ensures that different types of needs are effectively addressed.
Infinity Platform is a software designed to provide unified security management and threat prevention across networks, cloud environments, and endpoints. The software integrates firewall, threat intelligence, and advanced security controls into a single architecture to help organizations protect against cyberattacks and vulnerabilities. Infinity Platform supports automated response, real-time monitoring, and centralized policy management, enabling organizations to address compliance requirements and streamline security operations. The software aims to reduce complexity by offering consolidated visibility and management for various security measures within an enterprise infrastructure. Through its centralized dashboard, Infinity Platform facilitates incident detection, investigation, and remediation to address evolving security challenges.
Intruder helps lean security teams proactively uncover and fix weaknesses by unifying attack surface management, cloud security and continuous vulnerability scanning in one intuitive platform. With compliance-ready reports and actionable results prioritized by severity and exploit likelihood, Intruder helps 3,000+ customers focus on fixing what matters. Integrating seamlessly with AWS, Azure, Google Cloud, Slack, Jira and more, Intruder makes exposure management simple, effective and scalable for growing teams.
BeVigil Enterprise is a software designed to identify and assess mobile application security vulnerabilities in enterprise environments. It automates the scanning of mobile apps to detect security issues such as malware, data leaks, and code weaknesses. The software provides detailed risk analysis and generates reports to help organizations understand and mitigate threats to their mobile applications. BeVigil Enterprise supports compliance requirements by highlighting areas of concern in app security and assists security teams in prioritizing remediation efforts. It enables organizations to maintain an overview of their mobile application security posture and address potential risks before they are exploited.
Group-IB Attack Surface Management is a software designed to continuously monitor and analyze digital assets and external infrastructure to identify vulnerabilities and potential entry points for cyber threats. The software aggregates data on internet-facing resources, discovers unknown assets, and tracks changes over time to provide visibility into an organization’s exposure. It assists security teams in detecting misconfigurations, outdated components, and points of risk that could be exploited by attackers. Group-IB Attack Surface Management aims to improve risk assessment and incident response by delivering contextual information about exposed assets and their associated weaknesses, supporting efforts to strengthen overall cyber defense and align security measures with organizational priorities.
Recorded Future Attack Surface Intelligence is a software designed to provide visibility into an organization's external digital assets and associated risks. The software collects and analyzes data from a range of sources to map the organization's internet-facing infrastructure, identify exposures, and assess vulnerabilities. It enables security teams to continuously monitor their digital footprint, helping to uncover unauthorized or forgotten assets and prioritize mitigation efforts. The software aims to address the challenge of managing and securing an expanding attack surface by offering real-time insights, automated asset discovery, and contextual risk assessment to support effective security operations and incident response.
Assetnote Continuous Security Platform is a software designed to automate and enhance the process of external attack surface management for organizations. The software continuously monitors internet-facing assets to identify vulnerabilities, misconfigurations, and exposures. It provides real-time visibility into asset inventory, tracks changes in the attack surface, and detects security issues that could be targeted by adversaries. By integrating with workflow tools and enabling customizable alerting, the software supports the detection and prioritization of critical risks. Assetnote Continuous Security Platform addresses the business problem of maintaining comprehensive oversight and proactive management of digital assets to reduce security risks and support ongoing compliance with security standards.
Censys Attack Surface Management is a software designed to help organizations identify, monitor, and manage internet-facing assets. The software continuously discovers external infrastructure, provides an inventory of assets, and highlights exposures and risks associated with those assets. It offers features such as automated asset discovery, vulnerability detection, and real-time change monitoring. The software allows security and IT teams to gain visibility into unknown or unauthorized assets, reducing the risk of external threats by helping to address security gaps across digital infrastructure. Censys Attack Surface Management addresses the business problem of incomplete asset inventory and unmanaged external exposure, supporting organizations in their efforts to improve their security posture and response capabilities.
F5 Distributed Cloud Web App Scanning continuously discovers your external attack surface, crawling domains and APIs to identify exposed apps and infrastructure. It runs automated penetration tests—powered by Dynamic Application Security Testing (DAST)—against your web applications and APIs to detect vulnerabilities aligned with OWASP Top 10, plus business‑logic flaws, broken access controls, injection issues, outdated components, and more. The service provides rich evidence via screenshots, videos, and detailed context, along with remediation guidance. It supports authenticated testing with test-user credentials, including 2FA, and can run on public cloud, on‑prem, or edge sites. Recon and Scan results integrate into DevOps workflows through CI/CD tools and track findings in task trackers or reports. Scans can be scheduled and generate compliance-ready reports for SOC 2, ISO 27001, and other standards.
watchTowr Platform is a software designed to assess and monitor an organization’s external attack surface by continuously scanning and analyzing internet-facing assets. The software identifies vulnerabilities, misconfigurations, and risks across a range of systems and applications, providing actionable insights to help organizations reduce security exposures. Through automated testing and asset discovery, the software helps security teams prioritize remediation based on potential impact and risk. The software supports integrations with other security tools and offers reporting capabilities that facilitate visibility and trend analysis over time. Overall, it helps organizations improve their security posture by enabling proactive detection and management of threats to external assets.
Hadrian is a software designed to automate the discovery and security assessment of internet-facing assets for organizations. It continuously maps digital infrastructure and identifies vulnerabilities across networks, applications, and cloud environments, offering insights into exposure points and potential risks. The software leverages external perspectives to detect misconfigurations, out-of-date systems, and compliance gaps, helping security teams prioritize remediation efforts and reduce attack surfaces. It integrates with existing security workflows to streamline asset management and increase visibility of previously unknown or unmanaged resources. Hadrian aims to support proactive cybersecurity practices by enabling organizations to maintain current inventories and address emerging threats efficiently.