Attack Surface
Attack surface management tools for discovering, monitoring, and reducing external attack vectors to minimize cybersecurity risks.
Browse 416 attack surface tools
FEATURED
RELATED TASKS
A domain reconnaissance tool that automates subdomain discovery, port scanning, and monitoring with support for multiple data sources and notification integrations.
A tool for taking a list of resolved subdomains and outputting any corresponding CNAMES en masse.
A tool that finds more information about a given URL or domain by querying multiple data sources.
Scan the internet for publicly exposed network components
A Python-based tool for external attack surface discovery and reconnaissance across large-scale networks, focusing on IP address and subdomain enumeration.
ONYPHE is a cyber defense search engine that discovers exposed assets and provides real-time monitoring to identify vulnerabilities and potential risks.
A Python script that inventories and lists main AWS account resources to provide visibility into cloud infrastructure components that may impact billing or security.
WiGLE.net is a platform that collects and provides data on WiFi networks and cell towers, with over 1.3 billion networks collected.
A command-line tool for discovering domains and subdomains related to a target domain during reconnaissance activities.
A black-box reconnaissance tool that discovers cloud infrastructure, files, and applications across major cloud providers for security testing purposes.
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
Cloud_enum is a multi-cloud OSINT tool that enumerates publicly accessible resources across AWS, Azure, and Google Cloud platforms for security assessment purposes.
A Python tool that uses AWS Cloud Control API to enumerate and catalog AWS resources across specified accounts and regions, outputting results in JSON format.
Automate your reconnaissance process with AttackSurfaceMapper, a tool for mapping and analyzing network attack surfaces.
Performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
A data-mining and deep web asset search engine for breach analysis and prevention services.
A source code search engine for searching alphanumeric snippets, signatures, or keywords in web page HTML, JS, and CSS code.
FullHunt is a next-generation attack surface security platform that enables companies to discover, monitor, and secure their external attack surfaces.
An all-in-one email outreach platform for finding and connecting with professionals, with features for lead discovery, email verification, and cold email campaigns.
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
A tool for generating permutations, alterations and mutations of subdomains and resolving them
Attack Surface Tools - FAQ
Common questions about Attack Surface tools including selection guides, pricing, and comparisons.
Attack surface management tools for discovering, monitoring, and reducing external attack vectors to minimize cybersecurity risks.
