Menu option: InfoSec > Reconnaissance

The Reconnaissance Module provides a clear, non-intrusive overview of your infrastructure’s network attack surface from outside your firewall. 

Using OSINT (Open-Source Intelligence), we analyze publicly-accessible information and externally-exposed assets to identify potential vulnerabilities. We map discovered surfaces, highlight high-risk exposures, and generate tailored recommendations to strengthen your defences. 

To scan from inside the firewall, use the Internal PenTest Module.

The key areas within Reconnaissance are:

• Discover - this is where you schedule scans or run an on-demand scan, and view the scan outcomes and history. Make sure you are fully authorised to run these scans, as although they are non-intrusive, running recon without authorisation may violate internal policies or legal requirements.
• Insights - here is where you’ll see a more detailed breakdown of scan results, including vulnerabilities, open ports and services, subdomain enumeration and known exploits.
• Trend Analysis - includes an Executive Summary and remediation reports.
• Knowledge - a useful first port of call for some background reading on the terms and concepts used in this module. Includes understanding your attack surface, and interpreting scan results.

Related Articles

• Set up a scheduled reconnaissance scan
• Run an on-demand reconnaissance scan
• Review security vulnerabilities
• Review open ports and services
• Review domain registration information (WHOIS)
• Compare reconnaissance scans and review trends