Cloud ASM provides visibility into all the assets in your cloud infrastructure that are exposed to the internet.
Cloud Attack Surface Management (ASM) brings ASM capabilities to cloud security posture management, providing visibility into all the assets in your cloud infrastructure that are exposed to the internet.
Cloud ASM includes the following capabilities:
Discovery of unmanaged cloud services: Identify internet-exposed cloud services that are unmanaged, so you can onboard them into Cortex Cloud for comprehensive cloud security and policy enforcement.
Confirmation of internet exposure: ASM internet scan data is used to reinforce CNA detections to provide high-confidence detections of inadvertent internet exposure. This joint approach combines inside-out and outside-in assessments to reduce false-positives.
Monitoring of managed and unmanaged cloud services: Gain ongoing visibility into the risks on cloud services through regular ASM scans and issues and findings for cloud-related attack surface detections.
What is unmanaged cloud?
Managed cloud—Cloud services that were discovered in an ASM scan and can be correlated with preexisting cloud assets that have been onboarded into your asset inventory. For example, if an ASM scan finds a service on AWS that is also in your cloud inventory, the asset is considered a managed cloud asset.
Unmanaged cloud—Cloud services that were discovered by an ASM scan, were attributed to you based on domain, subdomain, or TLS certificate, but cannot be correlated to the IPs or FQDNs of any onboarded cloud assets. For example, if a scan detects a service on an Azure asset that has not been onboarded into your cloud inventory, it is considered an unmanaged cloud asset.
If an ASM scan finds a service on unsupported cloud provider (such as HiNet), it is considered "not applicable" because it cannot be onboarded and converted to a managed asset.