Know Your Attack Surface. Before Attackers Do.
Recon ASM discovers every asset on your network, runs 80+ automated vulnerability checks and searches billions of breached credentials — all from a single agent-based platform built for Australian security teams.
Your exposed services are a map.
Attackers are already reading it.
Most organisations have no clear picture of what they expose to the internet or their internal network. Shadow IT, forgotten test servers, misconfigured cloud services and compromised credentials build up silently. Recon ASM gives you that picture — continuously.
Unknown Assets
Servers, services and devices you have no record of — exposed and unpatched.
Undetected Vulnerabilities
SMBv1, default credentials, unauthenticated APIs — critical findings hiding in plain sight.
Breached Credentials
Staff email and password combinations already in attacker databases, ready to be used.
Everything you need to assess and monitor your attack surface
Asset Discovery
Passive mDNS/SSDP discovery with zero TCP footprint, followed by active nmap port scanning across common, top-1000 or all ports. OS detection down to build-level precision. Service fingerprinting, banner grabbing and web screenshots across every discovered host.
- Passive + active scan modes
- OS version mapped to product name + EOL status
- Headless browser screenshots (up to 25 per scan)
- 15 concurrent enrichment threads
- Auto-tagging by device type, OS family, service
Vulnerability Detection
80+ logic-based checks across your entire network — no generic scanner noise. Every check is purpose-built for the protocols your infrastructure actually uses, with results mapped to severity, CVSS rating and plain-English remediation guidance.
- Critical through Low severity classification
- CVSS-rated with plain-English remediation
- Network, identity, web and credential layers covered
- Logic-based — not signature-dependent
- Results exportable to MainFrame or CSV
Breach Credential Database
A locally searchable database of compromised credentials. Search by email, domain, username or IP — instantly. Push matches directly into your findings, export for client reporting, or use it as standalone breach monitoring for your organisation.
- Substring search across millions of records
- Supports plaintext + hashed credentials (MD5, SHA, bcrypt)
- Bulk import of any breach dump format
- Export to CSV or push directly to vulnerability findings
- OpenSearch integration for large datasets
Local Agent Intelligence
Deploy a lightweight agent on Windows hosts for deep internal visibility that network scanning alone cannot reach. Pulls data from the host itself via WMI and PowerShell — no credentials required from the scanning host.
- Wi-Fi saved password extraction
- Local user and group membership enumeration
- Installed patch status and missing updates
- Antivirus product detection
- AutoLogon registry detection
- Active Directory domain and forest info
See every finding in one dashboard.
Vulnerabilities by severity, asset inventory, breach matches and agent status — all visible at a glance. Full demo available on request.
Request a Private DemoUp and running in under an hour
Deploy Agent
Download the agent installer and enroll it with your organisation token. Works on Windows and Linux.
Configure Scan
Set your target CIDR ranges, port profile and which modules to enable. Fine-tune for stealth or speed.
Discover & Assess
The 6-phase scan engine runs automatically — passive discovery, port scanning, service enrichment, vulnerability checks and breach lookups.
Review & Act
Findings appear in the dashboard by severity. Export to CSV, push to MainFrame, or brief the client directly from the platform.
80+ checks. Every attack surface that matters.
Recon ASM runs purpose-built checks across every layer of your environment — not generic scanner noise. Full methodology is shared with clients during onboarding.
Exposed management interfaces, unauthenticated services and cleartext protocols across your network perimeter and internal segments.
Domain configuration weaknesses, authentication protocol risks and certificate service misconfigurations in Windows environments.
Missing security headers, SSL/TLS certificate health, technology fingerprinting and HTTP service exposure across discovered hosts.
Remote desktop, SSH, VNC and management protocol exposure — including authentication strength and encryption configuration.
Breach database correlation across your domains, email addresses and IP ranges to surface compromised credentials before attackers use them.
Deep local checks on enrolled Windows hosts — patch status, local configuration risks and identity exposure — without requiring domain credentials.
Penetration Testers
Run automated reconnaissance before and during assessments. Recon ASM handles the asset discovery and common-vuln sweep so you can focus your time on manual exploitation and business logic testing.
Internal Security Teams
Continuous visibility into what your organisation exposes. Run scheduled scans, track changes over time, and get early warning on new services, expired certificates or misconfigured hosts before they become incidents.
MSPs & Consultants
Deploy agents across multiple client environments from a single platform. Multi-organisation support with role-based access means each client sees only their own data.
Ready to see your full attack surface?
Request a private demo or view pricing to get started with Recon ASM today.
