External Attack Surface Management (EASM)
Identify Risks Coming From Internet Facing Assets and Systems That You Are Unaware Of
"EASM should be part of a broader enterprise-wide vulnerability and threat management effort, where known and unknown risks, vulnerabilities and assets are handled as part of a integrated strategy. "
- Gartner, Emerging Technologies: Critical Insights for External Attack Surface Management, Ruggero Contu
What is External Attack Surface Management (EASM)?
External Attack Surface Management is a combination of process and technology to discover external-facing (Internet exposed) enterprise assets and systems that may have vulnerabilities. External facing assets like Domains, Subdomains, IPs, public cloud service misconfigurations, leaked codes, exposed databases, vulnerabilities that can be exploited by attackers ..etc are discovered in EASM.
Potential Risks Without EASM:
- Lack of visibility on unknown & orphaned Apps, Exposed databases, and APIs
- Existence of unknown shadow IT assets and its unknown risks
- Lack of visibility on entry points for a hacker
EASM is an emerging product set that supports organizations in identifying risks coming from internet-facing assets and systems that they may be unaware of.
– Gartner, Emerging Technologies: Critical Insights for External Attack Surface Management, Ruggero Contu et al., 19 March 2021
How FireCompass Helps
Runs Continuously . No Software. No Hardware. No Additional Resources
Passive Attack Surface Discovery
FireCompass internet wide monitoring tool helps in discovering external-facing Enterprise assets and attribute them.
Active Validation
FireCompass validates the findings discovered through passive enumeration
Continuous Monitoring
Monitors conitnuously monitors and provide alerts on any changes or risks associated with your digital footprint.
Passive Attack Surface Discovery
FireCompass provides External Attack Surface Visibility to enable you to understand your assets and risks associated.
- We help you discover the exposed infrastructure
- Create an inventory of the External-facing Assets
- Identify exposed network infrastructure, database servers and cloud services.
- Identify exposed domains and subdomains.
- Collect information from a wide range of internet sources by continuous data acquisition and indexing
Active Validation
FireCompass validates the findings discovered through passive attack surface discovery as well as find out new vulnerabilities by scanning the systems
- Active Port Scanning in order to find high risk open ports and scan it for vulnerabilities
- Continuous internet wide port scanning and indexing
- Service Fingerprinting in order to determine the services including their versions running on the open ports on target networks
- Active validation of network vulnerabilities
- Active validation of application vulnerabilities
Continuous Monitoring
With the FireCompass EASM tool, we continuously monitor and analyze the internet and provide accurate real-time alerts. FireCompass monitors open ports, risky assets, misconfigured Databases, or any internet-facing infrastructure.
Benefits of Using FireCompass
Discover Risky Assets before Hackers
FireCompass helps to evade external breaches which will happen due to vulnerabilities in risky assets where organization has no visibility or has lost visibility of External Attack Surface
Reduce Digital Assets Exposure
FireCompass helps organizations to reduce their Digital Assets exposure by Identifying all misconfigurations, unnecessary open ports & all possible vulnerabilities from known and unknown assets
Identify Data Leaks
FireCompass continuously monitors the external-facing assets for data leakage, code leaks or exposed sensitive information.
Get Real Time Alerts
FireCompass continuously analyzes the internet, and provides alerts on any changes or risks associated with your digital footprint
Important Resources
Get A Hacker's View Of Your Attack Surface
See your organization’s attack surface from a hacker’s viewpoint (Unsanctioned Cloud Assets, Digital Footprint, Phishing Risks, Misconfigured Infrastructure & more.)
About FireCompass
FireCompass is a SaaS platform for Continuous Automated Red Teaming (CART) and Attack Surface Management (ASM). FireCompass continuously indexes and monitors the deep, dark and surface webs using nation-state grade reconnaissance techniques. The platform automatically discovers an organization’s digital attack surface and launches multi-stage safe attacks, mimicking a real attacker, to help identify breach and attack paths that are otherwise missed out by conventional tools.
See your organization’s attack surface from a hacker’s viewpoint: Digital Attack Surface & Shadow IT, Exposed Database,Cloud buckets, Risky Ports, Misconfigured Infrastructure, Code Leads & more)