Request for submitting an IDEA
With all new technologies in place, we still see latency across the board with medium scale servers and at tim...
Attack Surface Management
Join the conversation! This forum connects security professionals using Attack Surface Management. Ask questions, share your knowledge, and collaborate with peers.
Forum Posts
New Scan Range to Allowlist
For the best results using Mandiant Attack Surface Management, add the following IP addresses to your allowlis...
Discovery Context type internet_archive_database
Recently questions have come up related to the discovery context entry of internet archive database and what t...
Using Keyword Seeds with ASM
Since keywords may find things not related to your actual organization entities found are marked out of scope ...
How do I recover AWS resources that were affected by the CrowdStrike Falcon agent?
ver AWS resources that were affected by the CrowdStrike Falcon agent?On July 18th 2024, an update to the Crowd...
Important Notice: Mandiant ASM Discovery Engine Scanner Expansion
To enhance the scalability and performance of the Mandiant ASM Discovery Engine, we are expanding our scanner ...
API /v1/search/entities/ changes to include all entities without filtering
Previously, when performing API calls to capture entities (/v1/search/entities/), there were two filters which...
How to use a technology policy
If you have a collection where you expect not to find a specific technology you can create a technology policy...
Changing the severity of issues within a collection
In order to change the severity of an issue for a collection you can go to the collection settings and under i...
Disabling Issues from reoccuring
After an Issue has been seen in a scan it will show in the collection settings. Only after that, an Issue can ...
WAF rate-limiting ASM Scanning Ranges
For Collections configured with high number of seeds and resulting in many entities, there will be a big numbe...
Broad Scoping vs Non-broad scoping in ASM
By default, Mandiant ASM (Attack Surface Management) has a focused approach to identifying assets for testing....
Using the ASM Library - Overview
In this brief post, we'll take a closer look at the Library in Attack Surface Management (ASM). In ASM you hav...
Help with deleting a project
I have created a project and was wondering how I delete it?
Create & Delete An ASM Project Using API & Python
This guide will use Python to connect to ASM via API to create and/or delete. The script will contain a menu w...
API Examples - List ASM Projects using PowerShell and cURL
The following two examples can be used as a reference for basic calls to the ASM API. In both examples, the ke...
Is ASM SaaS vulnerable to critical vulnerabilities?
I'd like to know if ASM SaaS is vulnerable to the following critical vulnerabilities(specifically, if ASM util...
New Google Cloud Security Customer Success Services Available!
We are excited to announce the availability of Google Cloud Security Customer Success subscriptions. Optimize ...
Join our Webinar: Living on the Edge: Investigating Ivanti Connect Secure VPN Zero-Day Exploits
We have a webinar, Living on the Edge: Investigating Ivanti Connect Secure VPN Zero-Day Exploits coming up thi...
Why are some inferred CVEs come without a reference to (MA)TI Threat?
Is there a good explanation why some inferred CVEs come without a reference to (MA)TI Threat Intelligence when...
Mandiant Attack Surface Management 30-day free trial
Mandiant Attack Surface Management 30-day free trial https://www.mandiant.com/attack-surface-management-free-t...