Detectify launches IP Range Scanning to uncover hidden infrastructure before attackers do

Stockholm, Sweden (March 24, 2026) – Detectify, the Swedish application security testing platform built and trusted by hackers, today announced the launch of IP Range Scanning, a new capability designed to help organizations continuously discover and monitor entire blocks of IP addresses. The technology automates the identification of exposed infrastructure, helping security teams find forgotten assets and hidden risks before attackers exploit them.

Organizations across all sectors are sitting on forgotten IP addresses that have become primary entry points for modern cyberattacks. While millions have been spent securing public-facing websites, legacy tools often struggle with noise and stale data, leaving modern organizations with a massive, unmonitored blind spot. Recent research from Detectify highlights this gap, with SSH found on non-standard ports nearly as often as on port 22 (49.3% vs. 50.7%), indicating that organizations focused only on standard ports risk missing a substantial portion of exposed services.

This digital basement can be filled with orphaned servers, legacy hardware, and unauthorized shadow IT. To a security team, these assets are invisible. To a hacker, they are an unlocked window. Identifying assets across large IP blocks often results in fragmented data or noisy snapshots that fail to integrate with modern AppSec workflows. High-risk services like Redis and MongoDB are frequently exposed on raw IP addresses without associated domains, making them invisible to traditional tools.

Detectify’s IP Range Scanning prioritizes high-fidelity discovery across large network segments, giving security teams accurate, actionable visibility into previously overlooked assets and reducing blind spots at scale. With this release, customers can benefit from:

“Security teams have been trapped between fast but shallow mass-scanners and slow, legacy enterprise tools that produce too much noise,” says Rickard Carlsson, CEO and Co-founder of Detectify. “We’re ending that era of guesswork. If it’s on your network, we will find it and verify if it's actually exploitable.”

For organizations operating their own networks, such as government agencies and other large enterprises, IP ranges are often among the least understood areas of the attack surface. The ability to scan entire IP blocks in the same way as domains provides a clearer, more comprehensive view of what is actually exposed. Continuous discovery of services and applications across these ranges helps security teams identify forgotten or unmanaged assets early, improving visibility and reducing the risk of overlooked weaknesses being exploited.

“We don’t believe in half-measures. You either see your entire network, or you’re vulnerable. We’ve built the technology to bridge the gap between domain monitoring and the underlying IP infrastructure, because a blind spot is just a breach waiting to happen,” Carlsson concludes.

Media contacts

Jorge Vicente

Global Brand & Communications Manager, Detectify

• jorge.vicente@detectify.com
• +46761146350

Rachel McIntosh

San Francisco PR for Detectify

• detectify-team@sanfrancisco.fi

About Detectify

Founded by ethical hackers in 2013, Stockholm-based Detectify is an application security platform trusted by over 2,100 organizations globally, from high-growth startups to the world’s largest enterprises and public institutions.

Detectify equips modern security teams with clarity and control over their attack surface. Fueled by real-world validated payloads from its global community of elite ethical hackers and scaled through its own AI-driven engines, Detectify enables organizations to identify and fix truly exploitable vulnerabilities before attackers do.