How to Seed Attack Surface Management
Seeds are the known assets you provide that identify your assets on the public-facing web.
The first step to using Attack Surface Management is to identify the known public-facing assets, or seeds. After your seeds are added in Attack Surface Management, Attack Surface Management maps the full extent of your digital footprint across the entire Internet and accurately defines the perimeter of your public-facing network.
Want to use Attack Surface Management to find your seeds? Follow this guide.
These assets make great seeds. Not all of the options listed below are necessary or even applicable to your organization, so they are listed from most to least common.
-
Domains: Domain names identify DNS administrative zones, are registered with a registrar, and often have name servers or mail servers associated with them.
Example: censys.io
-
Other names: Other DNS names identify services (for example, me.censys.io) and map to 1 or more IP addresses where the services are running. These can be added as a "Domain" type.
Example: app.censys.io
-
IP addresses: IP addresses are a numerical label assigned to a device or service connected to the Internet to identify and reach it.
Example: 8.8.8.8
-
CIDR Blocks: A CIDR is a range of sequential IP addresses (in CIDR notation) assigned to an organization for their use.
Example: 8.8.8.0/24
-
ASNs: An autonomous system number is a numerical identifier of a connected group of 1 or more blocks of IP addresses that are assigned to an organization.
Example: 123
-
On the Dashboard panel, click on your username icon in the upper right and click Add Seeds.
-
Enter your assets in the text box, or upload a CSV or text file. The CSV or text files need to be under 5 megabytes in size.
-
If you want to upload a CSV file, the structure looks like this:
-
-
Click Next Step.
-
Resolve any issues and verify the accuracy of your assets in each section. Click Submit.
-
You receive an email when your attack surface is inventoried and ready for you to view.
You can add seeds with our REST API with this call:
POST ++https://app.censys.io/api/v1/seeds
Example Request Body
{ "seeds": [ { "type": "ASN", "value": 0, "label": "emeahq" }, { "type": "IP_ADDRESS", "value": "1.1.1.1", "label": "dns" }, { "type": "DOMAIN_NAME", "value": "example.com", "label": "main" }, { "type": "CIDR", "value": "127.0.0.0/16", "label": "internal" } ] }
To see more seed management methods, visit our API documentation.
To view your organization’s seed data, on the Inventory menu, click Seed Data.
The Seed Data page opens.
The 2 areas at the top of the page show the total number of assets:
-
provided to Attack Surface Management through seeds on the left.
-
discovered by Attack Surface Management with links to those lists on the right.
The table on the bottom of the page lists all the seed data added to the platform. This list includes information like the asset type, the value, the source (the interface used to add the seed), and a label, if available.
If you think you're missing some seeds, you can use Censys Attack Surface Management to find them!
Comments
0 comments
Article is closed for comments.