DeTCT
DeTCT is an attack surface management and digital risk protection platform that provides continuous monitoring of an organization's digital footprint to identify vulnerabilities and potential threats. The platform offers several core capabilities: 1. Attack Surface Discovery - Continuously monitors and identifies shadow IT, domain vulnerabilities, certificate weaknesses, configuration issues (DNS/SMTP/HTTP), open ports, IP/domain reputation, and cloud weaknesses. 2. Vulnerability Intelligence - Maps discovered vulnerabilities to assets and associated exploits, ranking them based on criticality to help organizations prioritize remediation efforts. 3. Digital Risk Protection - Monitors for domain and executive impersonation, brand infringement, and lookalike social handlers that could be used in social engineering attacks. 4. Data Breach Monitoring - Scans deep/dark web and surface web for leaked credentials, intellectual property, personal data, and other sensitive information that may have been exposed. 5. Social and Public Exposure Monitoring - Detects leaked source code, confidential files, PII/CII dumps, malicious mobile apps, and negative social sentiments that could indicate threats. 6. Third-Party Risk Monitoring - Extends visibility to third-party vendors' digital risk profiles, helping organizations manage supply chain cyber risks. The platform provides risk scores and hackability metrics to help organizations quantify their digital risk exposure and track improvements over time. It also offers recommended remediation actions to address identified issues.
FEATURES
ALTERNATIVES
XRATOR is a cybersecurity platform that continuously identifies vulnerabilities, assesses business risks, and manages security posture to align with strategic objectives and compliance requirements.
A solution that discovers, analyzes, and helps remediate vulnerabilities across an organization's external digital attack surface by identifying and monitoring internet-facing assets.
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
An attack surface management platform that discovers, maps, and monitors an organization's external digital assets to identify vulnerabilities and security weaknesses before they can be exploited.
Panorays is a third-party cyber risk management platform that combines external attack surface monitoring with automated security questionnaires to assess, remediate, and continuously monitor vendor security postures.
A threat intelligence platform that provides comprehensive visibility into an organization's attack surface by collecting, analyzing, and structuring threat data to enable proactive security measures against emerging threats.
A free online service that scans the dark web for exposed credentials and sensitive data associated with specific domains or email addresses.
A platform that maps enterprise attack surfaces by consolidating asset inventory, prioritizing vulnerabilities based on exposure, and providing contextual visualization of security risks.
PINNED
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.