Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel
bgColor#DEEBFF

What is the Attack Surface Mapper? 🤔

Attack Surface Mapper scan covers various aspects of a domain's web presence and associated cloud services. By deeply scanning webpage content, headers, and cloud storage services like Open S3 buckets and Open Azure blobs, the scan aims to identify security vulnerabilities and exposures.

...

Info

For a list of the IPs used for Attack Surface Mapper (ASM) scanning, please check out the documentation page here: V4 Agent Configurations

...

What data is captured by the Attack Surface Mapper scan? 🤔

...

Data Label

Description / Use Case

DNS Records

Displays the DNS (Domain Name System) records associated to the domain. Different types will include A, MX, NS, TXT, and SOA record types. These help in the translation of a human-readable domain to an actual IP address. (IE: Phonebook for the Internet)

image-20240202-200715.png

MX Records

Displays the MX (Mail Exchange) record for the domain. This help to route email to the correct email server(s).

image-20240202-200519.png

Open Ports

Displays the count of open ports with the protocol. Ports are used for communication between software applications and services running on a device. The IANA maintains the full listing found here: IANA Ports Guide

image-20240202-200650.png

RAW Headers

Displays the RAW Header information for the domain, which includes Cache Control, Connection, Content-length, Content Encoding, Content Type, Date, Etag, Keep-alive, Server, Set Cookie, Vary, X-host, and X-us-compatible information. This information is used for communication between web browsers and servers.

image-20240202-200539.png

S3 Buckets

Displays any S3 (Amazon Simple Storage Service) buckets/containers for the domain; these are used for storing and organizing data on the Amazon Web Services (AWS) platform.

image-20231228-213925.png

SPF Records

Displays the Sender Policy Framework (SPF), DNS record for the domain. This helps in preventing email spoofing and phishing by verifying that an email sent from an authorized server.

Subdomains

Displays the count of Subdomains found the main domain.

image-20240202-200435.png

Target IPs

Displays the public or target IP for the domain.

image-20240202-200402.png

Vulnerabilities

Displays the count of Vulnerabilites; the CVE-ID, Severity, Description, EPSS Score, Base Score, Impact Score, and Exploitability Score will be included.

image-20231228-213531.png

...

Company Attack Surface Mapper - Table of Contents

Table of Contents
minLevel1
maxLevel6
include
outlinefalse
indent
excludeCompany Attack Surface Mapper - Table of Contents
typelist
class
printablefalse

...

Company Attack Surface Mapper - Overview

ASM is designed with two main sections; Configurations and Results.

...

Results are where you can view the results from the UI, or use the Standard Report.

...

Company Attack Surface Mapper - Details

Add Domain Configuration

Note

When you save a new configuration in Attack Surface Mapper, a scan will start immediately. To postpone the scan, check the "Scan Later" checkbox.

...

Info

Do not include the https:// or .com in the Domain* field

Tap Save when completed.

...

Edit Domain Configuration

Use the three-dot Action menu to access the Edit Configuration

...

Remove Domain Configuration

Use the three-dot Action menu to access the Remove Domain option.

...

Scan Now

Use the three-dot Action menu to use the Scan Now option.

...

Jobs

Tap the Jobs icon to see a history of the Jobs running for the company selected.

...

Alerts

You can use the timeline style to view the changes and updates in the System Events.

...

Need Support?

Contact our support team by sending an email to support@connectsecure.com or by visiting our Partner Portal, where you can create, view, and manage your tickets.

...