DeTCT
DeTCT is an attack surface management and digital risk protection platform that provides continuous monitoring of an organization's digital footprint to identify vulnerabilities and potential threats. The platform offers several core capabilities: 1. Attack Surface Discovery - Continuously monitors and identifies shadow IT, domain vulnerabilities, certificate weaknesses, configuration issues (DNS/SMTP/HTTP), open ports, IP/domain reputation, and cloud weaknesses. 2. Vulnerability Intelligence - Maps discovered vulnerabilities to assets and associated exploits, ranking them based on criticality to help organizations prioritize remediation efforts. 3. Digital Risk Protection - Monitors for domain and executive impersonation, brand infringement, and lookalike social handlers that could be used in social engineering attacks. 4. Data Breach Monitoring - Scans deep/dark web and surface web for leaked credentials, intellectual property, personal data, and other sensitive information that may have been exposed. 5. Social and Public Exposure Monitoring - Detects leaked source code, confidential files, PII/CII dumps, malicious mobile apps, and negative social sentiments that could indicate threats. 6. Third-Party Risk Monitoring - Extends visibility to third-party vendors' digital risk profiles, helping organizations manage supply chain cyber risks. The platform provides risk scores and hackability metrics to help organizations quantify their digital risk exposure and track improvements over time. It also offers recommended remediation actions to address identified issues.
FEATURES
ALTERNATIVES
XRATOR is a cybersecurity platform that continuously identifies vulnerabilities, assesses business risks, and manages security posture to align with strategic objectives and compliance requirements.
StrikeOne is a vulnerability management platform with AI capabilities that helps organizations identify, prioritize, and remediate security vulnerabilities through attack surface management, vulnerability management, and cybersecurity posture assessment.
A threat intelligence platform that provides comprehensive visibility into an organization's attack surface by collecting, analyzing, and structuring threat data to enable proactive security measures against emerging threats.
An attack surface management platform that discovers, maps, and monitors an organization's external digital assets to identify vulnerabilities and security weaknesses before they can be exploited.
A dark web monitoring platform that scans dark and deep web sources to detect exposed organizational data, compromised credentials, domain spoofing, and supply chain threats.
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
A platform that maps enterprise attack surfaces by consolidating asset inventory, prioritizing vulnerabilities based on exposure, and providing contextual visualization of security risks.
A solution that discovers, analyzes, and helps remediate vulnerabilities across an organization's external digital attack surface by identifying and monitoring internet-facing assets.
PINNED
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.