Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term External Attack Surface Management (EASM)

Training Camp • Cybersecurity Glossary

What is External Attack Surface Management (EASM)?

EASM continuously discovers and monitors internet-facing assets from an attacker's view to find exposed, misconfigured, or unknown shadow IT.

Glossary > Security Operations > External Attack Surface Management (EASM)

Understanding External Attack Surface Management (EASM)

External Attack Surface Management EASM is the continuous discovery, inventory, and monitoring of an organization's internet-facing assets from an outside-in, attacker's perspective. EASM tools identify exposed domains, IP addresses, cloud services, certificates, and shadow IT that could be targeted, then flag misconfigurations and vulnerabilities. By revealing unknown or forgotten assets, EASM helps reduce the exploitable footprint before adversaries find it.

Learn More About External Attack Surface Management (EASM):

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →