Externally Facing Asset Inventory
ThreatNG primarily focuses on discovering, inventory, assessing, and monitoring externally facing assets. It provides organizations a comprehensive and up-to-date view of their external attack surface, including the associated exposures and risks. However, the actual remediation of identified exposures would typically be performed by the organization's security or IT teams using appropriate tools and processes. ThreatNG could facilitate the handoff to these teams by providing them with detailed information about the identified exposures and potential remediation strategies.
Discover and inventory externally facing assets: ThreatNG's superior discovery capabilities would identify an organization's external digital assets, including domains, subdomains, IP addresses, cloud resources, social media profiles, code repositories, mobile apps, and more. ThreatNG could create a comprehensive inventory of all these assets, providing organizations with a clear picture of their external attack surface.
Identify and assess external exposures: ThreatNG's assessment capabilities could evaluate the security posture of the identified external assets. It includes identifying vulnerabilities in web applications, exposed APIs, misconfigured cloud services, and other potential exposures. ThreatNG could also assess the organization's susceptibility to phishing, BEC attacks, and other social engineering threats.
Monitor changes to external assets: ThreatNG's continuous monitoring capabilities would track changes to the organization's external assets, such as new domains being registered, new social media accounts being created, or changes in the technology stack of a web application. It would enable security teams to stay updated on the evolving attack surface and identify potential new risks as they emerge.