EASM
External Attack Surface Management
EASM focuses specifically on discovering and monitoring assets exposed to the internet from an outside-in perspective. EASM tools scan the public internet for an organization's domains, IPs, certificates, and cloud resources without requiring internal network access.
Como é usado em cibersegurança
Security teams run EASM scans to discover assets they did not know were publicly exposed. Threat intelligence analysts use EASM data to assess how an attacker would view the organization's external footprint. GRC analysts use EASM reports to verify that externally exposed systems comply with security policies and hardening standards.
As definições são explicações originais escritas para fins de desenvolvimento profissional. Para definições técnicas autoritativas, consulte NIST, ISO ou o órgão de normalização correspondente.