New Features and Improvements - March 2023

Nicola Chapman
4 April 2023
|
2 min Read
|
Nicola Chapman
Create free account

Contents

Introduction

March has been a significant month for FractalScan Surface, seeing the launch of our public API, amongst many other great new features. Read on to find out more.

Public API

FractalScan Surface now has a public API available allowing you to programmatically access your scan data. Using your existing FractalScan Surface login, you can easily generate an API key to start accessing your data.

Data available via version 1 of the API includes:

  • Information about your organisation
  • Information about your scan groups
  • Summary data for all of your scans
  • Lists of actions for each of your scans

Our interactive API documentation browser is shown below, and allows easy testing of the FractalScan Surface public API which conforms to the OpenAPI Specification.

FractalScan Surface API

Full documentation of the FractalScan Surface API can be found here.

This is version 1 of FractalScan Surface’s API. Over time you can expect new endpoints to access more of a scan’s data, and the ability to control scans from the API. Please contact us if there’s anything you would like to see included in the future.

API read access is available to customers on our Premium plan or higher.

CISA known exploited vulnerabilities (KEV)

The Cybersecurity & Infrastructure Security Agency (CISA) publish details of the Common Vulnerabilities & Exposures (CVEs) known to have been exploited in the wild by an attacker. FractalScan Surface is using this data to highlight any risks you have in your infrastructure that are known to have been exploited at some point.

CISA known exploits in FractalScan Surface

This isn’t saying you yourselves have been exploited necessarily, but is highlighting that attackers have been known to exploit this vulnerability in the past to gain access to a company’s network. This can help you to prioritise your risk remediation activities.

KEV risks list view

Scan history

Whether you’ve been running scans for 2 weeks or 2 years, we keep a full history of the scan, allowing you to keep an eye on your Risks & Health Score trends. To make it easier for you to view your full history, we now consolidate some of your older scan iterations.

Scan history over time graph

Coming soon

We’re always working on new features and improvements to FractalScan Surface, here’s an insight into what you will see coming soon.

  • Alert notifications of significant changes found in scans - e.g. newly discovered risks found in a daily scan
  • The ability to invite new users to your organisation.
  • Better visibility of all the checks FractalScan Surface is running for your scans.
  • The ability to remove a seed domain or IP from your scan while retaining the history of the scan.
About Nicola Chapman
Nicola is the Product Manager for FractalScan Surface, working closely with the Red Maple Technologies engineers to represent our customers' and users' needs. She has over 10 years product management experience building products to help solve real world problems for businesses.
Nicola Chapman

REVIEWS

What our customers think

Haas Automation Logo

Ken Shannon

Haas Automation

"FractalScan Surface is an impressive tool that we use to monitor our external cyber risks and those of our dealers worldwide. We've even used it to perform due diligence security checks on third-party suppliers. I appreciate the easy-to-understand summary views, and my team likes that the daily scans automatically reflect their ongoing risk mitigation efforts. I'd really encourage other companies to use this tool and start tracking their cyber risks."

View The Space

Robin Craib

VTS

"FractalScan's capability to mark domains hosted on shared cloud services gives us the ability to remove risks associated with IP addresses which are not part of our infrastructure, allowing us to focus our resources. The consultancy we've had from the professional services team at Red Maple Technologies confirms the credibility and background of the team building FractalScan. I'm excited to see what's coming next for FractalScan."

Formula 1

CIO

Formula 1

"FractalScan Surface has been great for discovering our online-visible assets and exposures, allowing us to make some immediate improvements to reduce our cyber risk." Daily scanning enables us to keep on top of our external attack surface, which is particularly important to us since we have complex digital content output. FractalScan gives us the view on our data we didn't have."

Capterra Logo

Andy K.

Financial Services

"Simplicity - give it a domain and it will find out what it can about subdomains, related domains and any issues it identifies with them. We may not be privy to sites or subdomains other parts of the business may implement. FractalScan gives us a discovery tool to identify previously unknown public infrastructure, we can reduce our external attack surface by identifying and resolving issues and getting "old" public infrastructure decommissioned."

Capterra Logo

Tim N.

Information Technology and Services

"What I appreciate the most about FractalScan is the level of accuracy this platform provides while maintaining a passive approach to data collection. As someone who works in technical sales and consulting, I have a lot of clients working with products in this space. The common problem is the overwhelming amount of results and the operational overhead required to make those results actionable. FractalScan's unique solution provides results that are immediately accurate and actionable."

Capterra Logo

Jason C.

Financial Services

"FractalScan Surface provides a compact and concise overview of vulnerabilities that have been identified on our assets. It is important for teams to be able to understand the issue, prioritise remediation activities and focus on removing vulnerabilities from our estate....this tool enables all of this and has proven to find vulnerabilities that other tools do not."

Capterra Logo

Jack S.

Information Technology and Services

"FractalScan Surface delivers an exceptional experience, principally by enhancing our understanding of customers' digital assets. The platform's intuitive interface facilitates a user-friendly experience that our team appreciates. This, in turn, allows us to proactively identify vulnerabilities and address them before they escalate. We've found the platform to be markedly superior to its market counterparts in terms of capability and efficiency. Integration into our existing business processes was seamless, minimising any potential operational interruptions."