Attack Surface Management (ASM) helps you discover and manage your public attack surface, providing visibility into all of your internet-facing digital assets, including on-prem and cloud.
The ASM add-on module for Cortex XSIAM brings industry-leading Attack Surface Management (ASM) capabilities to the XSIAM platform. ASM helps you discover and manage your public attack surface, providing visibility into all of your digital assets, including on-prem and cloud. With Attack Surface Management, you can identify and remediate vulnerabilities, enforce compliance policies, and reduce the risk of cyberattacks.
ASM data and insights are viewable and actionable in several different places in the Cortex XSIAMinterface.
External Surface AssetsβIn the Inventory, Cortex XSIAM provides a searchable, filterable view of all the external internet-facing assets that have been attributed to your organization, including certificates, domains, services, and websites.
Dashboards & ReportsβCortex XSIAM provides out-of-the-box and customizable dashboards and reports on the current and historical state of your organization's inventory, services, and issues. This reporting delivers insight into trends and helps leaders identify key topics and business units to focus on to improve the security posture of the organization.
Cases & IssuesβCortex XSIAM generates issues based on a flexible attack surface rules engine that identifies security and configuration risks within your organization's assets and services, and provides a workflow in which analysts can investigate, prioritize, track efforts to remediate outstanding problems, and independently confirm that issues have been corrected.
Attack Surface Management moduleβCortex XSIAM provides 800+ attack surface rules and hundreds of attack surface tests to identify actionable, risky and vulnerable assets and confirm exploitability. In this location you'll also find a list of your External IP Address Ranges with key contextual information about each range.