Go to the text

[Service] Cloud Patrol releases new feature "Attack Surface Management (ASM)"


SB Technology Corp.

On March 28, 2024, we launched a new feature, "Attack Surface Management (ASM)," for Cloud Patrol, our cloud security posture management (CSPM) service. Based on the operational process recommended by the Ministry of Economy, Trade and Industry, we discover exposed assets in cloud environments and issue a public asset ledger. Based on that, we issue information visible from the outside as an ASM report. This allows you to understand information that is unintentionally exposed to the outside from an attacker's perspective, so you can use it as an opportunity to review asset inventory and access controls.

■ Features of Attack Surface Management (ASM) function

1. Attack Surface Management with CSPM
General ASM tools find publicly available assets on the Internet by tracing relationships such as 1) organizations/domains and 2) IP addresses. However, this service works in conjunction with ASM and CSPM to comprehensively find unrelated publicly available assets in the cloud.

2. Discover public assets in the cloud environment and publish them as a public asset ledger
By checking the cloud environment from the inside, it discovers and lists public assets, including those that have not yet been identified, and publishes them as a public asset ledger. It can be used to discover unintentionally exposed assets such as public IP addresses and host names.

3. Understand what information is actually visible from the outside with ASM reports
Based on the public asset ledger, OSINT is used to collect related OS, software, version, port, banner information, etc., and issue an ASM report. This allows attackers to understand what information is exposed to the outside world.

■ Attack Surface Management Operational Image

■ Target cloud

▼Click here for details on "Cloud Patrol".

https://www.softbanktech.co.jp/service/list/cloudpatrol