Detectify Enhances Domain Discovery for Complete and Continuous Attack Surface Protection
Best-in-class EASM Platform Announces New Connectors for Improved Attack Surface Discovery
STOCKHOLM, BOSTON - February 1, 2024 - Detectify, the leading External Attack Surface Management (EASM) platform powered by elite ethical hackers, today announced major improvements to the asset discovery capabilities of its EASM platform, enabling the connection of all types of DNS providers. With the new connectors, organizations can benefit from having all of their assets continuously tested for vulnerabilities and exposures.
Attack surfaces are constantly growing. Today, 33% of organizations1 are utilizing two or more cloud providers, a pattern also seen among Detectify's customer base. Organizations using multiple cloud providers commonly struggle to manage digital exposures and vulnerabilities. For instance, e-commerce businesses launch time-sensitive marketing campaigns with unique subdomains that remain reachable after their campaign has ended. Similarly, large technology companies are concerned about their visibility into what their subsidiaries expose with their existing tools. Continuous visibility over their external attack surface is essential.
Detectify's role in this landscape has become increasingly significant. Over the last few months, Detectify has identified over 5,000 potential subdomain takeovers, reflecting only a fraction of what may be vulnerable for users’ assets. With the new connectors, Detectify expects to see a rise in domain-related vulnerabilities like subdomain takeovers and server misconfigurations.
Source: Detectify data 2023
“Organizations with hybrid cloud setups find it challenging to obtain a full, gap-free picture of their attack surface. Ensuring comprehensive coverage is a key focus,” said Danwei Tran Luciani, Interim VP of Product at Detectify.
The asset discovery capability of EASM sets the foundation for the whole program, enabling organizations to discover all of their external assets so they can be inventoried and assessed. Only by rigorously and continuously discovering all known and unknown internet-facing assets can EASM assess, prioritize, and remediate threats effectively.
Security teams should be able to manage the evolution of their complete external attack surface no matter where assets are hosted. The introduction of new domain connectors offers significant benefits to Detectify customers:
- Continuous synchronization between DNS platform and in-tool inventory, ensuring that assets are consistently mapped and evaluated.
- Direct integration with Alibaba, Azure, Cloudflare, DigitalOcean and GPC. Expanded support for AWS Route53 by supporting integrations through credentials and role-based.
- Upload of zonefiles or manual additions of domains.
The new domain connectors for attack surface discovery are available now to all Detectify customers. For more information, visit https://blog.detectify.com/product-updates/improving-domain-discovery-with-new-connectors/
1 Cloudzero Cloud Computing Statistics 2024. https://www.cloudzero.com/blog/cloud-computing-statistics/
About Detectify
Detectify sets the standard for External Attack Surface Management (EASM), providing 99.7% accurate vulnerability assessments. Product security and AppSec teams trust Detectify to expose exactly how attackers will exploit their Internet-facing applications. The Detectify platform automates continuous real-world, payload-based attacks crowdsourced through its global community of elite ethical hackers, exposing critical weaknesses before it’s too late. Go hack yourself: detectify.com.
Media Contact
Jorge Vicente
PR & Communications at Detectify
+46761146350
press@detectify.com