Automated Asset Discovery Across Your Infrastructure
Subdomains, services, and technologies added to your inventory automatically as scans uncover them, with change tracking built in.
Unified Asset Inventory
Every domain, subdomain, IP, service, and technology -- filterable by type, risk level, and status.
| Asset | Type | Risk | Findings | Last Seen | Status |
|---|---|---|---|---|---|
| api.acme.com | Subdomain | Critical | 14 | 2 hours ago | Active |
| staging.acme.com | Subdomain | High | 7 | 6 hours ago | Active |
| 203.0.113.42 | Ip | Medium | 3 | 1 day ago | Active |
| acme.com | Domain | Low | 2 | 3 hours ago | Active |
| legacy.acme.com | Subdomain | High | 9 | 3 days ago | Inactive |
Full-Spectrum Asset Visibility
Six asset types discovered and cataloged automatically from scan results.
Subdomain Enumeration
Discover subdomains from 40+ sources including certificate transparency logs, DNS brute-force, permutation, and web archives. Every subdomain is resolved and validated.
Service & Port Detection
Identify open ports, running services, and software versions across your infrastructure. Risky ports like databases and admin interfaces are flagged immediately.
Technology Fingerprinting
Detect CMS platforms, web frameworks, CDN providers, WAFs, and JavaScript libraries. Know exactly what technology your targets are running and where they are exposed.
Service Detection & Fingerprinting
Know exactly what software is running, where, and whether it has known vulnerabilities.
Hosts Discovered
38
Open Ports
147
Unique Services
23
Top Port
443
Technology Fingerprints
| Service | Product / Version | Hosts | Known CVE |
|---|---|---|---|
| https | Nginx 1.24.0 | 14 | -- |
| https | Apache 2.4.51 | 6 | CVE-2023-43622 |
| ssh | OpenSSH 8.9p1 | 12 | CVE-2024-6387 |
| mysql | MySQL 8.0.32 | 3 | -- |
| smtp | Postfix | 2 | -- |
Discovery That Keeps Working
Every scan enriches your inventory. Assets are tracked over time so you see what changed and when.
Multi-Source Subdomain Discovery
Eleven recon modules work together: Subfinder, Amass, CrtSh, Dnstwist, Alterx, Dnsx, Puredns, and AI-powered subdomain generation. Results are merged, deduplicated, and validated before being added to your inventory.
Change Tracking Over Time
Every asset records first-seen and last-seen timestamps with scan count history. Spot new assets that appeared since your last scan, or identify stale assets that may have been decommissioned.
Risk-Based Categorization
Assets inherit risk levels from their associated findings. A subdomain with critical vulnerabilities surfaces to the top of your inventory. Filter by risk level to focus on what matters.
Risky Port Alerting
Database ports, admin interfaces, and development services exposed to the internet are flagged immediately. See which ports are open on how many hosts, with one-click drill-down to affected assets.
Active / Inactive / Decommissioned
Track the lifecycle of every asset. Mark decommissioned assets so they are excluded from future scans but retained for audit history. Inactive assets that stop appearing in scans are flagged for review.
CDN & WAF Detection
Identify which assets sit behind Cloudflare, Akamai, AWS CloudFront, or other CDN providers. WAF detection helps you understand which assets have an additional layer of protection.
Quick-Add to Monitoring
One-click buttons on any discovered asset to add it directly to DNS, SSL, or uptime monitoring. Root domain extraction handles .co.uk, .com.au, and 60+ multi-part TLDs so the correct domain is always monitored.
Smart Autocomplete
When adding domains to any monitoring page, the input auto-suggests from your discovered asset inventory. Type two characters and see matching domains, subdomains, and IPs -- no copy-pasting from spreadsheets.
Automated Discovery Pipeline
Eleven scanner modules feed into your asset inventory automatically.
-
1
Subdomain Enumeration
Subfinder, Amass, CrtSh, Dnstwist
-
2
DNS Resolution & Permutation
Dnsx, Alterx, Puredns
-
3
Port Scanning & HTTP Probing
Nmap, Naabu, Httpx
-
4
Technology Fingerprinting
WhatWeb, Wafw00f, Httpx
Know Every Asset in Your Attack Surface
Automatically discover subdomains, open ports, running services, and technology stacks. Your asset inventory updates with every scan -- subdomain enumeration, service detection, and technology fingerprinting with no spreadsheets or manual audits.