EASM
The External Attack Surface Management (EASM) module provides information about your digital assets, potential security issues, and leaked credentials. You can use the EASM module to identify exposed known and unknown assets, learn about associated vulnerabilities, and prioritize the remediation of critical issues.
FortiRecon scans your digital assets and displays the results. There are two types of scans:
-
Scheduled Scan - Full scan that consists of both Passive and Active scanners, performed weekly or monthly based on your subscription.
-
Continuous Scan - Continuously scans all discovered assets to detect any updates such as new ports or services. The results are updated on refresh.
The EASM module displays scan results for your organization on the following pages :
Dashboard |
Displays widgets that summarize your discovered assets and potential security issues related to your assets. You can click some widgets to display more details on the other tabs. See Dashboard. |
Asset Discovery |
Displays a summary of all discovered assets and details about each asset. You can mark assets as false positives, manually add assets, and manually remove assets. See Asset Discovery. |
Security Issues |
Displays a summary of all potential security issues and details about each issue. You can filter security issues and change the status of security issues to reflect action taken at your organization. See Security Issues. |
Asset Management |
Displays tags and groups used to filter and link assets. See Asset Management. |
Leaked Credentials |
Displays a summary of leaked credentials by year and details about each breached dataset or leaked credential incident. See Leaked Credentials. |
Integrations |
Displays Azure and AWS integration that are tracked in Asset Discovery and Security Issues. See Integrations. |