(Preview)
nmap…
masscan…
httpx…
nuclei…
subfinder…
dnsx…
Defender…
▶ Start here
1Connect Defender
2Add targets
3Scan
🎯 Targets
0 hosts
Quick add: public
Paste
Upload File
Domain Enum
Azure Enum
ASN Enum
Uses subfinder (passive subdomain enum) + dnsx (DNS resolution). Discovered IPs are added to your target list. See Quick Setup Guide to install.
Maps a domain / ASN / IP to the CIDR ranges it announces — surfacing netblocks you may not know about. Keyless, via the free RIPEstat API (no install needed). Add the ranges to your target list.
Unauthenticated, external check for public Azure namespaces (blob storage, web apps, SQL, Key Vault, …) built from your keyword. Flags publicly listable blob containers (data exposure). No credentials used — the attacker's-eye view.
Microsoft
Azure
Entra
Defender
Cloud Apps
Register redirect URI: http://localhost:5000
API permission: Azure Service Management → user_impersonation
API permission: Microsoft Graph → Policy.Read.All (Delegated)
Filters: Location Type = IP ranges · Trusted = Yes
Cloud Apps portal → Settings → Cloud apps → API tokens → + Add token
Fetches: Type = Custom · Category = Corporate
Register redirect URI: http://localhost:5000
API permissions: WindowsDefenderATP → Machine.Read + AdvancedQuery.Read + Vulnerability.Read (Delegated)
Admin consent required · Can reuse same registration as Azure tab
aws Amazon Web Services Reserved · soon
EC2 public IPs Elastic IPs Route 53 ELB / ALB
Planned — signs in with an AWS access key or IAM role, then imports the public IPs of your internet-facing instances to correlate with EDR coverage.
Google Cloud Reserved · soon
Compute Engine Cloud DNS Load Balancing
Planned — signs in with Google OAuth or a service-account key, then imports your external Compute Engine IPs to correlate with EDR coverage.
Your Internet Exposure
Blue16 Sightline
Microsoft-powered CTEM
Your Public IP
Locating…
Detecting your public IP…
Add targets on the left to begin →
🕐 Recent Scans
Loading…