Continually monitor the external attack surface for unknowns and potential exposures.

Mandiant Attack Surface Management

See your organization through the eyes of the adversary

Through Mandiant Attack Surface Management (ASM), discover and analyze your internet assets across today’s dynamic, distributed, and shared environments, while continually monitoring the external ecosystem for exploitable exposures.

Get started

Set up a 30-day trial of Mandiant ASM. Sign up .

Features

Continuous monitoring

Control how often asset discovery and analysis are conducted with daily, weekly, or on-demand scans.

Technology and service identification

Get an inventory of applications and services running in the external ecosystem.

Outcome-based asset discovery

Specify the type of asset discovery workflow run against the attack surface based on specific outcomes or use cases.

Read more about outcome-based asset discovery here .

Active asset checks

Active asset checks are benign payloads or scripts designed from Mandiant IOCs and frontline intelligence , and are used to validate when an asset is susceptible to exploitation.

How It Works

Mandiant Attack Surface Management (ASM) offers the adversary's view of your organization's attack surface. Starting with simple information about the organization (such as a domain, known networks, or SaaS accounts), it collects asset and exposure information like an attacker would.

Watch the short demo

Mandiant Attack Surface Management dashboard which shows high-level reporting and summary information from the latest asset discovery scan.

Learn how Mandiant Attack Surface Management helps customers mitigate external cyber exposure risks by continually discovering and analyzing their assets for vulnerabilities, misconfigurations, and exposures.

Common Uses

Assess high-velocity exploit impact

Know when and where external assets are impacted.

Use active checks to quickly identify external asset exposures, allowing security teams to prioritize remediation efforts.

Learn more about MOVEit

Image of the Mandiant ASM GUI, featuring the Library which contains a list of the available active checks. The library is filtered for MOVEit, to show several active checks related to the vulnerability.

Learning resources

Know when and where external assets are impacted.

Use active checks to quickly identify external asset exposures, allowing security teams to prioritize remediation efforts.

Learn more about MOVEit

Identify shadow IT

Uncover unmanaged or unknown assets

Continually monitoring for shadow IT provides visibility of the known systems, and a running list of these assets to your security team, so they can keep watch for anything out of the ordinary. Your security team will receive daily summaries of new assets and technologies added.

Learning resources

Uncover unmanaged or unknown assets

Multicloud asset discovery

Assess cloud-hosted external assets for exposures

A centralized view of hybrid and multicloud environments allows security teams to answer critical questions when it matters most.

Learn about multicloud visibility

Learning resources

Assess cloud-hosted external assets for exposures

A centralized view of hybrid and multicloud environments allows security teams to answer critical questions when it matters most.

Learn about multicloud visibility

Mergers and acquisitions due diligence

Evaluate an acquisition’s external security posture

Your organization can take preventative measures during an acquisition with visibility into that acquisition’s unknown systems and a running list of assets. The security team can specify security posture requirements before and after the transaction closes.

Graphic showing the perception of an acquisition target having secured infrastructure on the left. While on the right the graphic shows the reality of the acquisition target having security issues, such as, unsanctioned apps with read and write access and internet-accessible misconfigurations.

Learning resources

Evaluate an acquisition’s external security posture

Subsidiary monitoring

Centralize portfolio visibility and risk mitigation

Assess the external security posture of each subsidiary, while enabling each to maintain autonomy. Mandiant ASM comes with role-based access controls (RBAC), equipping each organization to independently monitor and manage its own attack surface scope. All while centralizing visibility for the parent organization.

Graphic showing a parent organization in the top center with connections to the individual subsidiaries within the portfolio.

Learning resources

Centralize portfolio visibility and risk mitigation

Pricing

How pricing works	Mandiant Attack Surface Management pricing is based on the number of employees at your organization, and all paid subscriptions include a base fee.
Subscription	Description	Price
Self-assessment	Continuously monitor the expanding attack surface.	Connect with sales to discuss tailored enterprise pricing.

How pricing works

Mandiant Attack Surface Management pricing is based on the number of employees at your organization, and all paid subscriptions include a base fee.

Self-assessment

Description

Continuously monitor the expanding attack surface.

Price

Connect with sales to discuss tailored enterprise pricing.

Get a demo

See Mandiant Attack Surface Management in action.

Talk to Sales

Learn about Mandiant ASM

Business Case

Mandiant Attack Surface Management customers have provided their real-world testimonials in Gartner Peer Insights™.

Learn what customers think of Mandiant ASM!

Gartner Peer Insights anonymous review.

"Mandiant Advantage Attack Surface Management, recommended!"

Read the review

Featured benefits

Deeply understand your technology ecosystem.

Know when assets change to stay ahead of the threat.

Mitigate real-world exposure risk.

FAQ

What is attack surface management?

Attack surface management is an approach to cyber defense that assesses and monitors external and internal assets for vulnerabilities, as well as risks that can potentially impact an organization.

An attack surface management solution continuously discovers and assesses an organization’s assets for vulnerabilities, misconfigurations, and exposures.

What is the difference between an attack surface and attack vector?

An attack vector is an exploitable asset in the attack surface. An attack vector can be used by a threat actor for initial compromise.

What does an external attack surface management solution do?

At Google Cloud, we define external attack surface management as the automated and continuous discovery of internet-facing assets and cloud resources, assessed for technology relationships and the identification of vulnerabilities, misconfigurations, or exposures.

What are some attack surface examples?

Examples of attack surfaces include domains, IP ranges, data repositories, websites, servers, email, cloud resources, applications, microservices, and employees.

What is required to use Mandiant Attack Surface Management?

Onboarding is simple. All we need is a domain, IP address, URL, or netblock.

How does attack surface management reduce attack surfaces?

To reduce the overall attack surface, attack surface management solutions generate an asset inventory and alert the security team to exposed assets that can be targeted for exploitation.

Customers are empowered to use their preferred SIEM, SOAR, or ticketing system to facilitate remediation and attack surface reduction. Mandiant Attack Surface Management supports integrations with Chronicle Security Operations, Cortex XSOAR, Splunk Enterprise, and ServiceNow. Customers often use the API to retrieve data from Mandiant Attack Surface to send to their preferred SIEM, SOAR, or Ticketing Systems.

Learn about complementary products

Google Threat Intelligence Mandiant Security Validation

Docs Support

Console

Incident Response Assistance

Security

Home Intel and expertise SecOps Cloud security Security resources

Incident Response Assistance

Accelerate your digital transformation
Whether your business is early in its journey or well on its way to digital transformation, Google Cloud can help solve your toughest challenges.
Learn more

See all solutions

Industry Solutions

Reduce cost, increase operational agility, and capture new market opportunities.

Retail

Analytics and collaboration tools for the retail value chain.

Consumer Packaged Goods

Solutions for CPG digital transformation and brand growth.

Financial Services

Computing, data management, and analytics tools for financial services.

Healthcare and Life Sciences

Advance research at scale and empower healthcare innovation.

Media and Entertainment

Solutions for content production and distribution operations.

Telecommunications

Hybrid and multi-cloud services to deploy and monetize 5G.

Games

AI-driven solutions to build and scale games faster.

Manufacturing

Migration and AI tools to optimize the manufacturing value chain.

Supply Chain and Logistics

Enable sustainable, efficient, and resilient data-driven operations across supply chain and logistics operations.

Government

Data storage, AI, and analytics solutions for government agencies.

Education

Teaching tools to provide more engaging learning experiences.

Not seeing what you're looking for?
See all industry solutions

Application Modernization

Assess, plan, implement, and measure software practices and capabilities to modernize and simplify your organization’s business application portfolios.

CAMP

Program that uses DORA to improve your software delivery capabilities.

Modernize Traditional Applications

Analyze, categorize, and get started with cloud migration on traditional workloads.

Migrate from PaaS: Cloud Foundry, Openshift

Tools for moving your existing containers into Google's managed container services.

Migrate from Mainframe

Automated tools and prescriptive guidance for moving your mainframe apps to the cloud.

Modernize Software Delivery

Software supply chain best practices - innerloop productivity, CI/CD and S3C.

DevOps Best Practices

Processes and resources for implementing DevOps in your org.

SRE Principles

Tools and resources for adopting SRE in your org.

Day 2 Operations for GKE

Tools and guidance for effective GKE management and monitoring.

FinOps and Optimization of GKE

Best practices for running reliable, performant, and cost effective applications on GKE.

Run Applications at the Edge

Guidance for localized and low latency apps on Google’s hardware agnostic edge solution.

Architect for Multicloud

Manage workloads across multiple clouds with a consistent platform.

Go Serverless

Fully managed environment for developing, deploying and scaling apps.

Artificial Intelligence

Add intelligence and efficiency to your business with AI and machine learning.

Contact Center AI

AI model for speaking with customers and assisting human agents.

Document AI

Document processing and data capture automated at scale.

Product Discovery

Google-quality search and product recommendations for retailers.

APIs and Applications

Speed up the pace of innovation without coding, using APIs, apps, and automation.

New Business Channels Using APIs

Attract and empower an ecosystem of developers and partners.

Unlocking Legacy Applications Using APIs

Cloud services for extending and modernizing legacy apps.

Open Banking APIx

Simplify and accelerate secure delivery of open banking compliant APIs.

Databases

Migrate and manage enterprise data with security, reliability, high availability, and fully managed data services.

Database Migration

Guides and tools to simplify your database migration life cycle.

Database Modernization

Upgrades to modernize your operational database infrastructure.

Databases for Games

Build global, live games with Google Cloud databases.

Google Cloud Databases

Database services to migrate, manage, and modernize data.

Migrate Oracle workloads to Google Cloud

Rehost, replatform, rewrite your Oracle workloads.

Open Source Databases

Fully managed open source databases with enterprise-grade support.

SQL Server on Google Cloud

Options for running SQL Server virtual machines on Google Cloud.

Data Cloud

Unify data across your organization with an open and simplified approach to data-driven transformation that is unmatched for speed, scale, and security with AI built-in.

Databases Solutions

Migrate and manage enterprise data with security, reliability, high availability, and fully managed data services.

Smart Analytics Solutions

Generate instant insights from data at any scale with a serverless, fully managed analytics platform that significantly simplifies analytics.

AI Solutions

Add intelligence and efficiency to your business with AI and machine learning.

Data Cloud for ISVs

Innovate, optimize and amplify your SaaS applications using Google's data and machine learning solutions such as BigQuery, Looker, Spanner and Vertex AI.

Data Cloud Alliance

An initiative to ensure that global businesses have more seamless access and insights into the data required for digital transformation.

Digital Transformation
Accelerate business recovery and ensure a better future with solutions that enable hybrid and multi-cloud, generate intelligent insights, and keep your workers connected.

Digital Innovation

Reimagine your operations and unlock new opportunities.

Operational Efficiency

Prioritize investments and optimize costs.

COVID-19 Solutions

Get work done more safely and securely.

COVID-19 Solutions for the Healthcare Industry

How Google is helping healthcare meet extraordinary challenges.

Infrastructure Modernization

Migrate quickly with solutions for SAP, VMware, Windows, Oracle, and other workloads.

Application Migration

Discovery and analysis tools for moving to the cloud.

SAP on Google Cloud

Certifications for running SAP applications and SAP HANA.

High Performance Computing

Compute, storage, and networking options to support any workload.

Windows on Google Cloud

Tools and partners for running Windows workloads.

Data Center Migration

Migration solutions for VMs, apps, databases, and more.

Active Assist

Automatic cloud resource optimization and increased security.

Virtual Desktops

Remote work solutions for desktops and applications (VDI & DaaS).

Rapid Migration Program (RaMP)

End-to-end migration program to simplify your path to the cloud.

Backup and Disaster Recovery

Ensure your business continuity needs are met.

Red Hat on Google Cloud

Google and Red Hat provide an enterprise-grade platform for traditional on-prem and custom applications.

Productivity and Collaboration

Change the way teams work with solutions designed for humans and built for impact.

Google Workspace

Collaboration and productivity tools for enterprises.

Google Workspace Essentials

Secure video meetings and modern collaboration for teams.

Cloud Identity

Unified platform for IT admins to manage user devices and apps.

Chrome Enterprise

ChromeOS, Chrome Browser, and Chrome devices built for business.

Cloud Search

Enterprise search for employees to quickly find company information.

Security

Detect, investigate, and respond to online threats to help protect your business.

Security Analytics and Operations

Solution for analyzing petabytes of security telemetry.

Web App and API Protection

Threat and fraud protection for your web applications and APIs.

Security and Resilience Framework

Solutions for each phase of the security and resilience life cycle.

Risk and compliance as code (RCaC)

Solution to modernize your governance, risk, and compliance function with automation.

Software Supply Chain Security

Solution for improving end-to-end software supply chain security.

Security Foundation

Recommended products to help achieve a strong security posture.

Smart Analytics

Generate instant insights from data at any scale with a serverless, fully managed analytics platform that significantly simplifies analytics.

Data Warehouse Modernization

Data warehouse to jumpstart your migration and unlock insights.

Data Lake Modernization

Services for building and modernizing your data lake.

Spark on Google Cloud

Run and write Spark where you need it, serverless and integrated.

Stream Analytics

Insights from ingesting, processing, and analyzing event streams.

Business Intelligence

Solutions for modernizing your BI stack and creating rich data experiences.

Data Science

Put your data to work with Data Science on Google Cloud.

Marketing Analytics

Solutions for collecting, analyzing, and activating customer data.

Geospatial Analytics and AI

Solutions for building a more prosperous and sustainable business.

Datasets

Data from Google, public, and commercial providers to enrich your analytics and AI initiatives.

Startups and SMB

Accelerate startup and SMB growth with tailored solutions and programs.

Startup Solutions

Grow your startup and solve your toughest challenges using Google’s proven technology.

Startup Program

Get financial, business, and technical support to take your startup to the next level.

Small and Medium Business

Explore solutions for web hosting, app development, AI, and analytics.

Software as a Service

Build better SaaS products, scale efficiently, and grow your business.

Featured Products

Compute Engine

Virtual machines running in Google’s data center.

Cloud Storage

Object storage that’s secure, durable, and scalable.

BigQuery

Data warehouse for business agility and insights.

Cloud Run

Fully managed environment for running containerized apps.

Google Kubernetes Engine

Managed environment for running containerized apps.

Vertex AI

Unified platform for ML models and generative AI.

Looker

Platform for BI, data applications, and embedded analytics.

Apigee API Management

Manage the full life cycle of APIs anywhere with visibility and control.

Cloud SQL

Relational database services for MySQL, PostgreSQL and SQL Server.

Cloud SDK

Command-line tools and libraries for Google Cloud.

Cloud CDN

Content delivery network for delivering web and video.

Not seeing what you're looking for?
See all products (100+)

AI and Machine Learning

Vertex AI Platform

Unified platform for ML models and generative AI.

Vertex AI Studio

Build, tune, and deploy foundation models on Vertex AI.

Vertex AI Search and Conversation

Generative AI apps for search and conversational AI.

Dialogflow

Lifelike conversational AI with state-of-the-art virtual agents.

Natural Language AI

Sentiment analysis and classification of unstructured text.

Speech-to-Text

Speech recognition and transcription across 125 languages.

Text-to-Speech

Speech synthesis in 220+ voices and 40+ languages.

Translation AI

Language detection, translation, and glossary support.

Document AI

Document processing and data capture automated at scale.

Vision AI

Custom and pre-trained models to detect emotion, text, and more.

Contact Center AI

AI model for speaking with customers and assisting human agents.

Not seeing what you're looking for?
See all AI and machine learning products

Business Intelligence

Looker

Platform for BI, data applications, and embedded analytics.

Looker Studio

Interactive data suite for dashboarding, reporting, and analytics.

Compute

Compute Engine

Virtual machines running in Google’s data center.

App Engine

Serverless application platform for apps and back ends.

Cloud GPUs

GPUs for ML, scientific computing, and 3D visualization.

Migrate to Virtual Machines

Server and virtual machine migration to Compute Engine.

Spot VMs

Compute instances for batch jobs and fault-tolerant workloads.

Batch

Fully managed service for scheduling batch jobs.

Sole-Tenant Nodes

Dedicated hardware for compliance, licensing, and management.

Bare Metal

Infrastructure to run specialized workloads on Google Cloud.

Recommender

Usage recommendations for Google Cloud products and services.

VMware Engine

Fully managed, native VMware Cloud Foundation software stack.

Cloud Run

Fully managed environment for running containerized apps.

Not seeing what you're looking for?
See all compute products

Containers

Google Kubernetes Engine

Managed environment for running containerized apps.

Cloud Run

Fully managed environment for running containerized apps.

Cloud Build

Solution for running build steps in a Docker container.

Artifact Registry

Package manager for build artifacts and dependencies.

Cloud Code

IDE support to write, run, and debug Kubernetes applications.

Cloud Deploy

Fully managed continuous delivery to GKE and Cloud Run.

Migrate to Containers

Components for migrating VMs into system containers on GKE.

Deep Learning Containers

Containers with data science frameworks, libraries, and tools.

Knative

Components to create Kubernetes-native cloud-based software.

Data Analytics

BigQuery

Data warehouse for business agility and insights.

Looker

Platform for BI, data applications, and embedded analytics.

Dataflow

Streaming analytics for stream and batch processing.

Pub/Sub

Messaging service for event ingestion and delivery.

Dataproc

Service for running Apache Spark and Apache Hadoop clusters.

Cloud Data Fusion

Data integration for building and managing data pipelines.

Cloud Composer

Workflow orchestration service built on Apache Airflow.

Dataprep

Service to prepare data for analysis and machine learning.

Dataplex

Intelligent data fabric for unifying data management across silos.

Dataform

Build, version control, and deploy SQL workflows in BigQuery.

Analytics Hub

Service for securely and efficiently exchanging data analytics assets.

Not seeing what you're looking for?
See all data analytics products

Databases

AlloyDB for PostgreSQL

Fully managed, PostgreSQL-compatible database for enterprise workloads.

Cloud SQL

Fully managed database for MySQL, PostgreSQL, and SQL Server.

Firestore

Cloud-native document database for building rich mobile, web, and IoT apps.

Spanner

Cloud-native relational database with unlimited scale and 99.999% availability.

Bigtable

Cloud-native wide-column database for large-scale, low-latency workloads.

Datastream

Serverless change data capture and replication service.

Database Migration Service

Serverless, minimal downtime migrations to Cloud SQL.

Bare Metal Solution

Fully managed infrastructure for your Oracle workloads.

Memorystore

Fully managed Redis and Memcached for sub-millisecond data access.

Developer Tools

Artifact Registry

Universal package manager for build artifacts and dependencies.

Cloud Code

IDE support to write, run, and debug Kubernetes applications.

Cloud Build

Continuous integration and continuous delivery platform.

Cloud Deploy

Fully managed continuous delivery to GKE and Cloud Run.

Cloud Deployment Manager

Service for creating and managing Google Cloud resources.

Cloud SDK

Command-line tools and libraries for Google Cloud.

Cloud Scheduler

Cron job scheduler for task automation and management.

Cloud Source Repositories

Private Git repository to store, manage, and track code.

Infrastructure Manager

Automate infrastructure management with Terraform.

Cloud Workstations

Managed and secure development environments in the cloud.

Gemini for Google Cloud

AI-powered collaborator available across Google Cloud.

Not seeing what you're looking for?
See all developer tools

Distributed Cloud

Google Distributed Cloud Edge

Distributed cloud services for edge workloads.

Google Distributed Cloud Hosted

Distributed cloud for air-gapped workloads.

Hybrid and Multicloud

Google Kubernetes Engine

Managed environment for running containerized apps.

Apigee API Management

API management, development, and security platform.

Migrate to Containers

Tool to move workloads and existing applications to GKE.

Traffic Director

Traffic control pane and management for open service mesh.

Cloud Build

Service for executing builds on Google Cloud infrastructure.

Operations

Monitoring, logging, and application performance suite.

Google Distributed Cloud

Fully managed solutions for the edge and data centers.

Industry Specific

Anti Money Laundering AI

Detect suspicious, potential money laundering activity with AI.

Cloud Healthcare API

Solution for bridging existing care systems and apps on Google Cloud.

Device Connect for Fitbit

Gain a 360-degree patient view with connected Fitbit data on Google Cloud.

Telecom Network Automation

Ready to use cloud-native automation for telecom networks.

Telecom Data Fabric

Telecom data management and analytics with an automated approach.

Telecom Subscriber Insights

Ingests data to improve subscriber acquisition and retention.

Spectrum Access System (SAS)

Controls fundamental access to the Citizens Broadband Radio Service (CBRS).

Integration Services

Application Integration

Connect to 3rd party apps and enable data consistency without code.

Workflows

Workflow orchestration for serverless products and API services.

Apigee API Management

Manage the full life cycle of APIs anywhere with visibility and control.

Cloud Tasks

Task management service for asynchronous task execution.

Cloud Scheduler

Cron job scheduler for task automation and management.

Dataproc

Service for running Apache Spark and Apache Hadoop clusters.

Cloud Data Fusion

Data integration for building and managing data pipelines.

Cloud Composer

Workflow orchestration service built on Apache Airflow.

Pub/Sub

Messaging service for event ingestion and delivery.

Eventarc

Build an event-driven architecture that can connect any service.

Management Tools

Cloud Shell

Interactive shell environment with a built-in command line.

Cloud console

Web-based interface for managing and monitoring cloud apps.

Cloud Endpoints

Deployment and development management for APIs on Google Cloud.

Cloud IAM

Permissions management system for Google Cloud resources.

Cloud APIs

Programmatic interfaces for Google Cloud services.

Service Catalog

Service catalog for admins managing internal enterprise solutions.

Cost Management

Tools for monitoring, controlling, and optimizing your costs.

Operations

Monitoring, logging, and application performance suite.

Carbon Footprint

Dashboard to view and export Google Cloud carbon emissions reports.

Config Connector

Kubernetes add-on for managing Google Cloud resources.

Active Assist

Tools for easily managing performance, security, and cost.

Not seeing what you're looking for?
See all management tools

Maps and Geospatial

Earth Engine

Geospatial platform for Earth observation data and analysis.

Google Maps Platform

Create immersive location experiences and improve business operations.

Media Services

Cloud CDN

Content delivery network for serving web and video content.

Live Stream API

Service to convert live video and package for streaming.

OpenCue

Open source render manager for visual effects and animation.

Transcoder API

Convert video files and package them for optimized delivery.

Video Stitcher API

Service for dynamic or server side ad insertion.

Migration

Migration Center

Unified platform for migrating and modernizing with Google Cloud.

Application Migration

App migration to the cloud for low-cost refresh cycles.

Migrate to Virtual Machines

Components for migrating VMs and physical servers to Compute Engine.

Cloud Foundation Toolkit

Reference templates for Deployment Manager and Terraform.

Database Migration Service

Serverless, minimal downtime migrations to Cloud SQL.

Migrate to Containers

Components for migrating VMs into system containers on GKE.

BigQuery Data Transfer Service

Data import service for scheduling and moving data into BigQuery.

Rapid Migration Program (RaMP)

End-to-end migration program to simplify your path to the cloud.

Transfer Appliance

Storage server for moving large volumes of data to Google Cloud.

Storage Transfer Service

Data transfers from online and on-premises sources to Cloud Storage.

VMware Engine

Migrate and run your VMware workloads natively on Google Cloud.

Mixed Reality

Immersive Stream for XR

Hosts, renders, and streams 3D and XR experiences.

Networking

Cloud Armor

Security policies and defense against web and DDoS attacks.

Cloud CDN and Media CDN

Content delivery network for serving web and video content.

Cloud DNS

Domain name system for reliable and low-latency name lookups.

Cloud Load Balancing

Service for distributing traffic across applications and regions.

Cloud NAT

NAT service for giving private instances internet access.

Cloud Connectivity

Connectivity options for VPN, peering, and enterprise needs.

Network Connectivity Center

Connectivity management to help simplify and scale networks.

Network Intelligence Center

Network monitoring, verification, and optimization platform.

Network Service Tiers

Cloud network options based on performance, availability, and cost.

Virtual Private Cloud

Single VPC for an entire organization, isolated within projects.

Private Service Connect

Secure connection between your VPC and services.

Not seeing what you're looking for?
See all networking products

Operations

Cloud Logging

Google Cloud audit, platform, and application logs management.

Cloud Monitoring

Infrastructure and application health with rich metrics.

Error Reporting

Application error identification and analysis.

Cloud Debugger

Real-time application state inspection and in -production debugging.

Cloud Trace

Tracing system collecting latency data from applications.

Cloud Profiler

CPU and heap profiler for analyzing application performance.

Cloud Quotas

Manage quotas for all Google Cloud services.

Productivity and Collaboration

AppSheet

No-code development platform to build and extend applications.

AppSheet Automation

Build automations and applications on a unified platform.

Google Workspace

Collaboration and productivity tools for individuals and organizations.

Google Workspace Essentials

Secure video meetings and modern collaboration for teams.

Gemini for Workspace

Embeds generative AI across Google Workspace apps.

Cloud Identity

Unified platform for IT admins to manage user devices and apps.

Chrome Enterprise

ChromeOS, Chrome browser, and Chrome devices built for business.

Security and Identity

Cloud IAM

Permissions management system for Google Cloud resources.

Sensitive Data Protection

Discover, classify, and protect your valuable data assets.

Mandiant Managed Defense

Find and eliminate threats with confidence 24x7.

Mandiant Threat Intelligence

Know who’s targeting you.

Security Command Center

Platform for defending against threats to your Google Cloud assets.

Cloud Key Management

Manage encryption keys on Google Cloud.

Mandiant Incident Response

Minimize the impact of a breach.

Mandiant Attack Surface Management

See your organization through the eyes of the adversary.

Assured Workloads

Compliance and security controls for sensitive workloads.

Chronicle Security Operations

Detect, investigate, and respond to cyber threats.

Mandiant Consulting

Get expert guidance before, during, and after an incident.

Not seeing what you're looking for?
See all security and identity products

Serverless

Cloud Run

Fully managed environment for running containerized apps.

Cloud Functions

Platform for creating functions that respond to cloud events.

App Engine

Serverless application platform for apps and back ends.

Workflows

Workflow orchestration for serverless products and API services.

API Gateway

Develop, deploy, secure, and manage APIs with a fully managed gateway.

Storage

Cloud Storage

Object storage that’s secure, durable, and scalable.

Block Storage

High-performance storage for AI, analytics, databases, and enterprise applications.

Filestore

File storage that is highly scalable and secure.

Persistent Disk

Block storage for virtual machine instances running on Google Cloud.

Cloud Storage for Firebase

Object storage for storing and serving user-generated content.

Local SSD

Block storage that is locally attached for high-performance needs.

Storage Transfer Service

Data transfers from online and on-premises sources to Cloud Storage.

Parallelstore

High performance, managed parallel file service.

Google Cloud NetApp Volumes

File storage service for NFS, SMB, and multi-protocol environments.

Backup and DR Service

Service for centralized, application-consistent data protection.

Web3

Blockchain Node Engine

Fully managed node hosting for developing on the blockchain.

Save money with our transparent approach to pricing
Google Cloud's pay-as-you-go pricing offers automatic savings based on monthly usage and discounted rates for prepaid resources. Contact us today to get a quote.
Request a quote

Pricing overview and tools
Google Cloud pricing

Pay only for what you use with no lock-in.
Pricing calculator

Calculate your cloud savings.
Google Cloud free tier

Explore products with free monthly usage.

Save money with our transparent approach to pricing
Request a quote
Pricing overview and tools
Google Cloud pricing
Pricing calculator
Google Cloud free tier
Cost optimization framework
Cost management tools
Product-specific Pricing
Compute Engine
Cloud SQL
Google Kubernetes Engine
Cloud Storage
BigQuery
See full price list with 100+ products

Design a Mobile Site

View Site in Mobile | Classic

Mandiant Attack Surface Management

See your organization through the eyes of the adversary

Product highlights

Continuous monitoring

Technology and service identification

Outcome-based asset discovery

Active asset checks

Mandiant Attack Surface Management (ASM) offers the adversary's view of your organization's attack surface. Starting with simple information about the organization (such as a domain, known networks, or SaaS accounts), it collects asset and exposure information like an attacker would.

Assess high-velocity exploit impact

Know when and where external assets are impacted.

Learning resources

Know when and where external assets are impacted.

Identify shadow IT

Uncover unmanaged or unknown assets

Learning resources

Uncover unmanaged or unknown assets

Multicloud asset discovery

Assess cloud-hosted external assets for exposures

Learning resources

Assess cloud-hosted external assets for exposures

Mergers and acquisitions due diligence

Evaluate an acquisition’s external security posture

Learning resources

Evaluate an acquisition’s external security posture

Subsidiary monitoring

Centralize portfolio visibility and risk mitigation

Learning resources

Centralize portfolio visibility and risk mitigation

Get a demo

Talk to Sales

Learn about Mandiant ASM

Sign up for a 30-day trial

Experience a day in the life of a customer

Attack surface discovery at scale

Automated discovery for testing

Automate attack surface reduction with Chronicle

Related Content

What is attack surface management?

What is the difference between an attack surface and attack vector?

What does an external attack surface management solution do?

What are some attack surface examples?

What is required to use Mandiant Attack Surface Management?

How does attack surface management reduce attack surfaces?