Salience xASM

Salience xASM (Extended Attack Surface Management) is a cybersecurity platform by Humanize Security that covers external, internal, and API attack surface analysis. **External Attack Surface:** Salience performs asset discovery, web application scanning, port scanning, domain reputation monitoring, SSL/TLS certificate auditing, threat intelligence integration, attack vector mapping, and third-party risk assessment to identify and analyze externally exposed assets. **API Attack Surface:** The platform discovers API endpoints and evaluates them for input sanitization issues, rate limiting and throttling configurations, authentication and authorization weaknesses, and sensitive data leakage. **Internal Attack Surface:** Salience deploys honeypots (supporting multiple honeypot types) to detect internal threats. It performs attacker behavior analysis, provides alarming and triggering mechanisms, and includes ransomware signature and behavior detection. **Risk and Reporting:** The platform includes quantified risk assessment capabilities, translating findings into actionable recommendations for management and C-suite stakeholders. It supports automated penetration testing to detect weaknesses, misconfigurations, and vulnerabilities across IT systems and networks. **Coverage:** The platform categorizes 15+ asset types, covers 170+ vulnerabilities through active and passive checks, and integrates with 250+ data sources for asset discovery and enrichment. Salience xASM is positioned for use across industries including finance, insurance, healthcare, government, telecom/IoT, and SaaS, and supports compliance frameworks including PCI DSS, NIST 800-52, NIST 800-53, GDPR, HIPAA, ISO 27001, and SOC 2.