External Attack Surface Management Tools
External attack Surface Management tools for discovering and securing internet-facing assets, domains, and exposed services.
Browse 158 external attack surface management tools
FEATURED
USE CASES
An information gathering tool for DNS, subdomains, ports, and directories enumeration.
A command-line tool for discovering domains and subdomains related to a target domain during reconnaissance activities.
A subdomain scan tool that helps you find subdomains of a given domain.
An automation framework that runs multiple open-source subdomain bruteforcing tools in parallel using Docker Compose and custom wordlists.
A tool for generating permutations, alterations and mutations of subdomains and resolving them
A simple web-based interface for subdomain enumeration using the subfinder tool.
A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys.
A Python-based tool for subdomain enumeration and analysis
A tool for performing subdomain enumeration using Censys API
A powerful enumeration tool for discovering assets and subdomains.
A Ruby-based tool that enumerates all public IPv4 and IPv6 addresses associated with an AWS account across multiple services including EC2, CloudFront, ELB, RDS, and others.
A black-box reconnaissance tool that discovers cloud infrastructure, files, and applications across major cloud providers for security testing purposes.
A multi-cloud DNS security tool that detects dangling DNS records and potential subdomain takeover vulnerabilities by scanning cloud infrastructure and DNS zones.
A distributed AWS security auditing tool that continuously enumerates and scans internet-facing AWS services to identify potentially misconfigured resources.
Scan the internet for publicly exposed network components
Performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
A tool that checks for hijackable packages in NPM and Python Pypi registries
Python utility for testing the existence of domain names under different TLDs to find malicious subdomains.
FestIn discovers open S3 buckets associated with a domain using crawling and DNS reconnaissance techniques.
An easy-to-use and lightweight API wrapper for Censys APIs with support for Python 3.8+.
A Go-based tool for discovering and inventorying internet-facing AWS assets across single or multiple accounts to help maintain comprehensive cloud attack surface visibility.
External Attack Surface Management Tools FAQ
Common questions about External Attack Surface Management tools, selection guides, pricing, and comparisons.
EASM tools discover internet-facing assets including: domains and subdomains (including forgotten ones), IP addresses and open ports, cloud resources, web applications and APIs, SSL certificates (including expired ones), email servers, exposed databases, code repositories, and third-party services connected to your infrastructure. Many organizations are surprised to find 30-50% more assets than they knew about.
