Fortinet black logo

User Guide

Home FortiRecon 24.1.b User Guide

Introduction

24.1.b
24.1.b
24.1.a
24.1.0
23.4.a
23.4.0
23.3.a
23.3.0
23.2.b
23.2.a
23.2.0
23.1.b
23.1.a
23.1.0
22.4.a
22.4.0
22.3.0
22.2.0
Copy Link
Copy Doc ID e05d81b1-ec03-11ee-8c42-fa163e15d75b:897693
Download PDF

Introduction

FortiRecon is a Digital Risk Protection (DRP) service that operates alongside existing security solutions to provide you with the visibility that an adversary can have of your infrastructure. This early warning of any malicious activity targeted at your organization enables swift detection and mitigation. Operating purely from outside the organizational boundary, the service maps an organization’s digital footprint and monitors it for abnormal activity. The service gives organizations the intelligence to mitigate credible security threats in a controlled manner as part of ongoing security efforts.

FortiRecon scans the organization's attack surface and identifies risks to assets while FortiGuard Threat Intelligence delivers early warning of risks to the organization through targeted, curated intelligence to provide an early warning of any malicious activity targeted to the organization.

The FortiRecon portal includes the following modules:

Overview

The Overview module provides a centralized view of your organization's digital risk posture across External Attack Surface Management (EASM), Brand Protection (BP), and Adversary Centric Intelligence (ACI) modules. Discovered issues are mapped to relevant MITRE ATT&CK techniques and sub-techniques, providing a valuable framework for understanding attacker motivations and potential attack paths. See Overview.
EASM

The External Attack Surface Management (EASM) module provides an adversary’s view of the organization digital attack surface and prioritizes risks and exposures, enabling administrators to mitigate threats in a controlled manner before the threats become a problem. See EASM.
Brand Protection

The Brand Protection (BP) module continually monitors the organization’s public-facing visibility for unauthorized changes, including web-based phishing attacks, typo-squatting, rogue applications, credential leaks, and brand impersonation in social media, which may impact brand value, integrity, and trust. See Brand Protection.
ACI

The Adversary Centric Intelligence (ACI) module leverages FortiGuard Threat Analysts to provide comprehensive coverage of dark web, open source, and technical threat intelligence, including threat actor insights. This information enables administrators to proactively assess risks, respond faster to incidents, better understand their attackers, and protect assets. See Adversary Centric Intelligence.
Profile Settings

The Profile Settings module allows you to personalize your FortiRecon account and provide information on your organization. See Profile settings.
Note

FortiRecon APIs are available on the Fortinet Developer Network (FNDN). You must first register an account on FNDN to gain access.
Previous
Next

Introduction

FortiRecon is a Digital Risk Protection (DRP) service that operates alongside existing security solutions to provide you with the visibility that an adversary can have of your infrastructure. This early warning of any malicious activity targeted at your organization enables swift detection and mitigation. Operating purely from outside the organizational boundary, the service maps an organization’s digital footprint and monitors it for abnormal activity. The service gives organizations the intelligence to mitigate credible security threats in a controlled manner as part of ongoing security efforts.

FortiRecon scans the organization's attack surface and identifies risks to assets while FortiGuard Threat Intelligence delivers early warning of risks to the organization through targeted, curated intelligence to provide an early warning of any malicious activity targeted to the organization.

The FortiRecon portal includes the following modules:

Overview

The Overview module provides a centralized view of your organization's digital risk posture across External Attack Surface Management (EASM), Brand Protection (BP), and Adversary Centric Intelligence (ACI) modules. Discovered issues are mapped to relevant MITRE ATT&CK techniques and sub-techniques, providing a valuable framework for understanding attacker motivations and potential attack paths. See Overview.
EASM

The External Attack Surface Management (EASM) module provides an adversary’s view of the organization digital attack surface and prioritizes risks and exposures, enabling administrators to mitigate threats in a controlled manner before the threats become a problem. See EASM.
Brand Protection

The Brand Protection (BP) module continually monitors the organization’s public-facing visibility for unauthorized changes, including web-based phishing attacks, typo-squatting, rogue applications, credential leaks, and brand impersonation in social media, which may impact brand value, integrity, and trust. See Brand Protection.
ACI

The Adversary Centric Intelligence (ACI) module leverages FortiGuard Threat Analysts to provide comprehensive coverage of dark web, open source, and technical threat intelligence, including threat actor insights. This information enables administrators to proactively assess risks, respond faster to incidents, better understand their attackers, and protect assets. See Adversary Centric Intelligence.
Profile Settings

The Profile Settings module allows you to personalize your FortiRecon account and provide information on your organization. See Profile settings.
Note

FortiRecon APIs are available on the Fortinet Developer Network (FNDN). You must first register an account on FNDN to gain access.
Previous
Next