DeTCT
DeTCT is an attack surface management and digital risk protection platform that provides continuous monitoring of an organization's digital footprint to identify vulnerabilities and potential threats. The platform offers several core capabilities: 1. Attack Surface Discovery - Continuously monitors and identifies shadow IT, domain vulnerabilities, certificate weaknesses, configuration issues (DNS/SMTP/HTTP), open ports, IP/domain reputation, and cloud weaknesses. 2. Vulnerability Intelligence - Maps discovered vulnerabilities to assets and associated exploits, ranking them based on criticality to help organizations prioritize remediation efforts. 3. Digital Risk Protection - Monitors for domain and executive impersonation, brand infringement, and lookalike social handlers that could be used in social engineering attacks. 4. Data Breach Monitoring - Scans deep/dark web and surface web for leaked credentials, intellectual property, personal data, and other sensitive information that may have been exposed. 5. Social and Public Exposure Monitoring - Detects leaked source code, confidential files, PII/CII dumps, malicious mobile apps, and negative social sentiments that could indicate threats. 6. Third-Party Risk Monitoring - Extends visibility to third-party vendors' digital risk profiles, helping organizations manage supply chain cyber risks. The platform provides risk scores and hackability metrics to help organizations quantify their digital risk exposure and track improvements over time. It also offers recommended remediation actions to address identified issues.
FEATURES
ALTERNATIVES
A platform that maps enterprise attack surfaces by consolidating asset inventory, prioritizing vulnerabilities based on exposure, and providing contextual visualization of security risks.
StrikeOne is a vulnerability management platform with AI capabilities that helps organizations identify, prioritize, and remediate security vulnerabilities through attack surface management, vulnerability management, and cybersecurity posture assessment.
A dark web monitoring platform that scans dark and deep web sources to detect exposed organizational data, compromised credentials, domain spoofing, and supply chain threats.
XRATOR is a cybersecurity platform that continuously identifies vulnerabilities, assesses business risks, and manages security posture to align with strategic objectives and compliance requirements.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.