CrowdStrike Falcon Exposure Management
CrowdStrike has transformed Falcon Surface from a standalone EASM tool into a core part of Falcon Exposure Management, adding AI-native code to proactively identify and eliminate enterprise risk. The software goes beyond alert identification to use adversary-driven AI to deliver real risk reduction. It can correlate exposures with business context, validating exploitability, and enabling direct remediation in Falcon. Enterprises can get an outside-in view of their attack surface and discover internet-connected assets using a variety of techniques, including active, passive, and API-based scans. Using a proprietary and continuously running internet mapping technology, its engine can determine location information and see real-time changes. Customers are seeing up to 98% fewer critical vulnerabilities and 75% smaller external attack surfaces. Specific pricing is not available, and this tool is not part of its enterprise software bundle. It can be purchased as a subscription license on a per managed endpoint basis, with unmanaged asset coverage included at each tier. The above link also has an interactive demo.
CyCognito Attack Surface Management
CyCognito’s CAASM product provides continuous monitoring and inventory of assets whether they reside on-premises, in the cloud, with a third-party, or through a subsidiary. Business context such as ownership and relationships between assets can be added to facilitate the triage process and aid in prioritizing response to risk. This context and intelligent prioritization (evaluating things like ease of exploitation and asset classification) helps focus on the most critical risks to the network. CyCognito also tracks configuration drift on assets, enabling the view of change history and identifying new risks to the corporate infrastructure. Pricing on AWS marketplace is $30,000 per year for 250 assets.
JupiterOne Cyber Asset Attack Surface Management
JupiterOne bills its CAASM solution as a way to seamlessly aggregate cyber asset data into a unified view. Context is added automatically where appropriate, and asset relationships can be defined and optimized to enhance vulnerability analysis and incident response. Custom queries allow the cybersecurity team to answer complex questions, while asset inventory can be browsed using an interactive visual map, enabling evaluation of incident scope and prioritization of response. Your existing investments into security tools can be leveraged using integrations, turning JupiterOne into a holistic centralized view into your corporate security posture. Pricing on AWS marketplace is based on company size and starts at $24,000 per year for up to 500 employees.
