External Attack Surface Management System (EASM) – SaaS

Focusing on Internet Assets to Build a Comprehensive Security View

Contact Now

Product Overview

The External Attack Surface Management System (EASM) delivers a SaaS-based solution that focuses on enterprises’ internet-facing assets and exposure points. Unlike traditional one-time scans based on static asset lists, EASM adopts an attacker’s perspective to intelligently identify and continuously monitor various types of enterprise assets across the internet.

It empowers customers with real-time visibility into asset distribution in cyberspace and provides ongoing vulnerability scanning, risk detection, and exposure management. EASM helps organizations proactively identify security risks and collaboratively build a comprehensive “panoramic view” of enterprise security posture.

Key Capabilities

Comprehensive Asset Discovery
In-Depth Vulnerability Scanning
Sensitive Data Monitoring
Continuous Risk Monitoring
Up-to-Date Security Intelligence
Expert Security Operations
Comprehensive Asset Discovery
Users only need to provide their primary domain name. Leveraging machine learning algorithms, the system automatically discovers internet-exposed digital assets associated with the domain, including domains, IP addresses, websites, application services, official accounts, mini programs, IoT devices, and even shadow assets outside the organization’s management scope.
In-Depth Vulnerability Scanning
The vulnerability scanning service is backed by an extensive library of detection rules, covering the OWASP Top 10 web vulnerabilities and compatible with the CNNVD vulnerability database. It incorporates over 3,000 built-in Proof-of-Concepts (POCs) and supports detection of zero-day, one-day, and N-day vulnerabilities.
Sensitive Data Monitoring
Monitors open-source communities, online storage services, document repositories, and dark web marketplaces to quickly detect leaked corporate information or documents. This proactive monitoring enables early warning to mitigate potential losses for the organization.
Continuous Risk Monitoring
Based on discovered asset information, the system continuously performs risk monitoring to identify exposed attack surfaces, system-level vulnerabilities, web application security flaws, weak passwords, and third-party component vulnerabilities. Vulnerability detection utilizes POC plugins for fast, reliable reproduction and high accuracy.
Up-to-Date Security Intelligence
Generates intelligent monitoring dictionaries based on user-provided keywords or keyword combinations, enabling monitoring for data leaks across open-source communities, dark web forums, and other sources to detect exposed sensitive information.
Expert Security Operations
The platform is operated by a dedicated team of security professionals who continuously monitor vulnerabilities and threat intelligence. They analyze collected data to uncover additional potential security issues and assist users in rapidly identifying impacted assets and systems during outbreaks of high-risk one-day vulnerabilities.

Key Benefits

  • Asset-Centric Approach

    Employs intelligent asset discovery algorithms to comprehensively identify an organization’s internet-facing assets and potential attack surfaces, including edge assets. Continuously monitors external asset changes and vulnerability risks to maintain real-time awareness of evolving threats and enable dynamic defense strategies.

  • Continuous Risk Monitoring

    Integrates with existing asset inventories to quickly and accurately identify impacted assets during high-risk vulnerability outbreaks, accelerating incident response times. Continuously monitors external open-source communities to detect sensitive data leakage events as they emerge.

  • Robust Security Assurance

    Backed by a team of expert security professionals who deliver timely technical support and emergency response assistance, ensuring robust protection for enterprise assets.

Business Scenarios

Risk Assessment of Internet Assets for Large Enterprises
Leveraging a SaaS-based platform combined with expert operational services, enterprises can continuously monitor their internet-facing assets, maintain real-time visibility into asset status, and proactively identify security risks and facilitate incident response.
During outbreaks of critical vulnerabilities, the system enables rapid identification and precise assessment of potential impacts on internet assets based on the existing asset inventory.
Internet Asset Audits for Critical Periods and Security Drills
During critical protection periods or cybersecurity exercises, organizations can adopt a proactive “offensive for defensive” approach to identify edge assets and shadow assets in advance. This process maps out the attack surface, uncovers risk exposures, and detects potential security vulnerabilities across assets.