Know your attack surface
before attackers do
Automated external attack surface monitoring built for ISO 27001 and NIS2 compliance. Discover forgotten assets, track vulnerabilities, and generate audit-ready reports, every week, automatically.
// no spam. early access only. unsubscribe anytime.
// the problem
Your attack surface is larger
than you think
Most organisations have forgotten subdomains, expired certificates, and open ports they don't know about. Attackers find them in minutes. You should find them first.
Forgotten infrastructure
Old subdomains, decommissioned servers, and legacy applications remain internet-facing long after they should have been shut down. Each one is an open door for attackers.
Expired TLS certificates
Certificates expire silently. When they do, customers see security warnings, services go down, and auditors ask hard questions.
Exposed services and ports
Database ports, RDP, management interfaces. Services that should never be internet-facing often are. A single misconfigured firewall rule can expose your entire infrastructure.
Undetected vulnerabilities
Critical CVEs are published daily. Without continuous scanning, you won't know if a newly disclosed vulnerability affects your exposed services until it's too late.
Weak email security
Missing or misconfigured SPF, DKIM, and DMARC records leave your domains open to spoofing and phishing attacks. These are basic controls that auditors always check.
No audit evidence
ISO 27001 and NIS2 require documented evidence of regular vulnerability scanning. Manual processes and one-off scans don't satisfy auditors. Continuous, dated reports do.
// the solution
Continuous monitoring,
zero effort
SurfaceScan runs automatically every week. You get a full picture of your external attack surface without lifting a finger.
Discover
We map your entire external attack surface: subdomains, IP ranges, certificates, DNS records, and services you may not know exist.
- → Passive subdomain enumeration
- → Certificate transparency logs
- → DNS record analysis
- → Reverse DNS lookups
- → Shodan enrichment
Scan
Every discovered asset is scanned for vulnerabilities, misconfigurations, open ports, weak TLS, and email security issues.
- → 6,400+ vulnerability templates
- → Port and service detection
- → TLS certificate auditing
- → SPF / DKIM / DMARC checks
- → CVE matching
Report
You receive a detailed, audit-ready report with every finding, its severity, history, and recommended remediation steps.
- → HTML and PDF reports
- → Finding history and trends
- → New vs resolved vs reopened
- → Delivered to your inbox
- → ISO 27001 / NIS2 evidence
// use cases
Built for compliance.
Loved by security teams.
Whether you are preparing for an ISO 27001 audit, meeting NIS2 obligations, or simply want to know what attackers can see. SurfaceScan has you covered.
ISO 27001 compliance
ISO 27001 Annex A requires regular technical vulnerability assessments of information systems. SurfaceScan provides dated, documented evidence of continuous scanning that satisfies auditors and simplifies certification.
NIS2 directive
NIS2 requires organisations to implement appropriate technical measures to manage cybersecurity risk. Regular attack surface monitoring is a core control expected by NIS2 auditors across all sectors.
Continuous security monitoring
Security teams use SurfaceScan as their eyes on the external perimeter. Get alerted the moment a new subdomain appears, a certificate is about to expire, or a critical CVE matches one of your exposed services.
// faq
Frequently asked questions
// get early access
Be first to know
your attack surface
Join the early access list. No spam, just a personal email when we are ready for you.