Loading content...
Loading content...
Attack Surface Management platform to map the external attack surface (EASM) + internal network discovery (IASM) + vulnerability intelligence + NIS2 compliance and business intelligence — in one unified platform.
Create your account and we credit your company 270 Cyber Tokens — enough for 3 full external scans, every subdomain included.
Security and compliance pull in opposite directions every day. Orizon RECON gives both sides one source of truth.
External attack-surface scans and internal network scans run in parallel pipelines, then feed the same compliance + risk engine.
Up to 12 NIS2 Article 21 measures auto-evaluated (9 baseline + 3 essential-entity extras), Annex I + II sector mapping from NACE, AI-generated 150-word executive risk brief, and a single 0-10 composite score linking findings to compliance gaps.
Subdomain enumeration, port and service detection, technology fingerprinting, TLS grading, cloud and CDN identification, and a full Web Security Suite — all from one target URL.
Drop the Scout probe on one Linux box. It maps every CIDR you point it at, fingerprints services, classifies every asset, and surfaces drift since the last scan — all on your private network, all in minutes.
Every CVE gets enriched, normalized and de-duplicated across NIST NVD, OSV, CISA KEV, GitHub Security Advisory, ExploitDB, CIRCL, EPSS and Metasploit. Active validation confirms which findings are actually exploitable in your environment. Then we tell you what to fix first.
| Vulnerability | Title | CVSS | EPSS | Affected host |
|---|---|---|---|---|
CVE-2024-31497APPLICABLEKEV | PuTTY ≤ 0.80 — ECDSA P521 nonce recovery (private-key exposure) | 9.8 | 94% | 192.168.1.42 |
CVE-2023-46604APPLICABLEKEV | Apache ActiveMQ — OpenWire deserialization RCE | 10.0 | 97% | 192.168.1.18 |
CVE-2024-21413APPLICABLE | Outlook moniker link bypass — credential leak | 8.8 | 78% | 192.168.5.7 |
—CREDS | Default credentials: admin/admin on Dell iDRAC | 9.1 | — | 192.168.1.201 |
—EOL | EOL OS — Windows Server 2012 R2 (out of support since Oct 2023) | 7.5 | — | 192.168.1.42 |
Advisory — version unknown, informational | ||||
CVE-2023-44487ADVISORY | HTTP/2 Rapid Reset — version-unknown, present in many stacks | 7.5 | 88% | Network-wide |
CVE-2024-3094ADVISORY | xz-utils backdoor — applies if liblzma versions 5.6.0/5.6.1 present | 10.0 | — | Network-wide |
CVE-2022-22965ADVISORY | Spring4Shell — version-unknown Java apps | 9.8 | 92% | Network-wide |
Every scan auto-evaluates up to 12 Article 21 risk-management measures (9 baseline + 3 essential-entity extras), classifies your sector against Annex I + II, and runs a Claude-driven 150-word risk brief — anchored to real breaches in your industry over the last 90 days.
A D3-force interactive map of every subnet in scope, plus a deep per-host drawer with ports, services, technologies, OS, vendor, and MAC. Filter by anything, export per asset.
Drop a schedule on any external target or internal probe and RECON runs the scan, retries on failure, deltas against last run, and notifies your team — automatically, on your timezone.
| Schedule | Frequency | Next run | Last 12 runs | Status | |
|---|---|---|---|---|---|
Daily — acme-corp.com perimeter acme-corp.com | Daily | in 4h 12m | 98% | Active | |
Weekly — HQ /24 192.168.1.0/24 | Weekly | in 2d 8h | 100% | Active | |
Bi-weekly — supplier portfolio group: vendors (24 domains) | Bi-weekly | in 9d | 86% | Active | |
Monthly — DMZ deep scan 10.10.0.0/16 | Monthly | in 21d | 100% | Paused | |
Quarterly — compliance sweep corp.example.com + 4 subsidiaries | Quarterly | in 47d | 100% | Active |
Every scan completion, every critical finding, every probe offline event — pushed to Slack, your SIEM, your ticketing system. Signed, retried, auditable. No polling. No glue scripts.
Every scan produces a multi-page PDF report with cover, table of contents, vulnerability tables and per-asset detail. Plus exports your team can pipe anywhere via API or webhook.
| CVE | Sev | Host |
|---|---|---|
| CVE-2024-31497APPLICABLE | 192.168.1.42 | |
| CVE-2023-46604KEV | 192.168.1.18 | |
| CVE-2024-21413APPLICABLE | 192.168.5.7 | |
| CVE-2023-44487ADVISORY | Network-wide | |
| CVE-2024-3094APPLICABLE | 192.168.5.31 |
Multi-tenant. EU-hosted. Self-healing. Audited end-to-end. Every piece — auth, secrets, queue, workers, integrations — designed to run unattended for security teams that already have enough fires to fight.
Everything we get asked the most — capabilities, pricing, security, legality. Click any question to expand.
A unified attack-surface platform combining external discovery, internal network scans (via the Scout probe), vulnerability intelligence from 8 sources, NIS2 compliance auto-evaluation, and Claude-driven industry risk briefs — all in one product.