What is a Scan Profile?
Horizon helps companies scan and monitor attack surfaces by mapping assets and finding vulnerabilities. This starts with creating a 'Scan Profile'.
Different types of Scan Profiles
After you have added a target, you can create a Scan Profile. Scan profiles can be of three types.
Attack Surface Scan
You can scan and map your attack surface with an attack surface scan. Horizon will list all your assets under Attack Surface>Assets. You can run an attack surface scan for any domain that is entered under Targets.
Application Scan
External Attack Surface monitoring is more than just asset management. It is also about which assets have issues and what are the vulnerabilities in your targets. Horizon allows you to know these issues by performing an application scan on your domains.
Digital Footprint Monitoring
Horizon allows you to go beyond traditional EASM solutions and augments your reconnaissance capability by scanning the deep web or open web to find leaked credentials, S3 bucket credentials and more.
Further, Horizon provides you the flexibility to choose how and when you would like to perform a scan. You could perform a scan in one of the following ways
Schedule a scan only once
Schedule recurring scans
Perform Ad-hoc scans on a manual basis yourself
Note - Digital Footprint Monitoring allows you to scan any domain, email address, keyword, bin or person.
Creating Scan Profiles
To create a Scan Profile, click Create Scan Profile to open Scan Profile Modal. You will find Create Scan Profile under Home>Scan Profiles> Create Scan Profile.
Add Basic Info
Enter the name of the scan profile you want to enter
Add a description to the scan profile you would like to create. The description will be seen under the name of the scan profile after a scan is performed under Home>Scan Profile>List of Scan Profiles.
Click Continue to proceed.
After you have clicked continue, you will be directed to ‘Selection Scan Type’. Under Select Scan Type select the scan option type. Click Continue.
You are now on Targets. Select or search for the target you want to scan. You can add one or more targets to perform a scan. After selection, click continue.
Note - For Attack Surface scan, you can only select domain as a target. Application scan supports both domain and IP address as a target.
Digital footprint monitoring allows you to add a target such as a person, bin, or email address as well along with IP address and Domain.
Select the trigger and schedule to perform the scan. Click the drop-down and select the necessary option.
If you select Schedule - One Time scan, click Select Date and Time and Timezone. Click Create to proceed and create a scan profile.
If you select Schedule - Recurring scan, select Occurence, date and time, and Timezone. Click Create to proceed and create a scan profile.
If you select Adhoc - Manual, click Create to proceed and create a scan profile.
Alternatively, You can also create scan profiles directly from Target Overview page. Under List of Targets, mark the checkbox for your target and click on Create Scan Profile under Actions dropdown.
Note - If you Digital Footprint Monitoring Scan, the scheduling tab is disabled. This is due to the fact that Digital Footprint Monitoring Scan runs on a continuous basis. The results are populated under Digital Footprint.
Once a scan profile is created, Horizon creates a new scan profile in List of Scan Profiles under Home→Scan Profiles.
To run the scan, click on the Scan profile name under List of Scan Profiles. Click Run Now to start the scan.
Next Steps
Navigating Scan Profile Page