CTEM Platform — 7 Categories × Continuous Monitoring

Your Unseen Assets Are
Your Greatest Vulnerability

Domains, IPs, ports, cloud buckets exposed to the internet — the assets missing from your inventory are the first targets attackers seek. PentaTrail monitors your attack surface continuously, from an attacker's perspective.

Start Your 14-Day Free Trial Watch Demo

Blind Spots

Three Blind Spots Organizations Face Today

Invisible External Assets

Cloud migration, M&A, departmental subdomains — IT asset inventories alone can't capture the full picture of your external exposure. What attackers can see, you cannot.

Key-Person Dependent Security

Scan result interpretation, priority decisions, executive reporting — all depending on specific individuals. When people change, so do response quality and risk judgments.

Risks You Can't Explain

When the board asks "Are we secure?" — can you answer with quantitative evidence? Organizations need the ability to explain risk with numbers, not intuition.

CTEM Framework

Gartner's 5-Stage Process, Fully Implemented

CTEM (Continuous Threat Exposure Management) is a framework proposed by Gartner in 2022 for continuously discovering, evaluating, and remediating externally visible weaknesses. Rather than a one-time assessment, it shrinks your attack surface by repeating five stages.

STEP 01

Scoping

Build an operational structure with groups and view permissions

STEP 02

Discovery

Daily discovery of external assets across 7 categories

Hosts, IPs, ports, tech stacks, URLs, cloud buckets, and WHOIS / DNS. Nine OSINT APIs refresh every day.

STEP 03

Prioritization

CVSS×EPSS determines Threat Discovery Level (TDL 1-5), then combined with Business Impact score to calculate Threat Exposure Risk (S/A/B/C bands)

BI Score auto-calculated from 3 axes: purpose, data classification, availability. Same CVSS, different priority for payment vs. test systems

STEP 04

Validation

Recon tooling + AI-generated templates prove exploitability without disruption

AI-generated templates + Nuclei engine. Evidence Grade for confidence

STEP 05

Mobilization

AI remediation reports and assignee tracking drive closure; scores quantify your management maturity

Owner assignment, deadlines & progress tracking to ensure completion

Based on Gartner, "Implement a Continuous Threat Exposure Management (CTEM) Program" (2022)

Why PentaTrail

Discovery Alone Is Not Enough

Most EASM products stop at asset discovery and vulnerability detection. PentaTrail is one of the few platforms that covers all five CTEM framework stages in a single solution.

Deterministic Discovery

No AI ambiguity

DNS, CT Logs, WHOIS, reverse IP — we combine internet protocols and OSINT for deterministic asset discovery. No reliance on AI inference; only technically verified results.

Daily Scanning

Never miss a change

Most EASM services scan monthly or weekly. PentaTrail runs automated daily scans, detecting new assets and service changes by the next day.

Non-Destructive Safety Guards

Security by architecture

Scans are limited to domains verified by DNS ownership proof. Deep scans only run non-destructive checks — no operations that could impact your systems are ever used.

AI-Native Architecture

Architected from CSIRT and governance operations, implemented entirely with generative AI. Discovery stays deterministic; AI powers what comes after — vulnerability templates, remediation reports, and executive summaries as core capabilities.

Customer API / MCP

An EASM that plugs into AI agents

REST API and MCP Server out of the box. Your AI agents pull vulnerability data from PentaTrail and automate the hand-off to SIEMs, ticketing systems, and remediation workflows — a native building block of the AI ecosystem.

Features

End-to-End External Attack Surface Management

All five CTEM stages in a single platform

Automated Asset Discovery

Hosts, IPs, ports, tech stacks, URLs, cloud buckets, and DNS — 7 asset categories surfaced by 9 OSINT APIs and refreshed daily in your inventory.

Vulnerability Scanning

Detect vulnerabilities through DAST and SSL scanning. CVSS×EPSS 8-cell matrix automatically classifies findings into "fix now," "plan to fix," and "monitor."

Change Detection

Detect new assets, service changes, and port openings daily. Score trends let you quantify how your security posture has improved over time.

Continuous Security Management

Group assets by division or subsidiary and assign owners. AI generates per-vulnerability remediation steps and correlated-risk analysis, tracked to closure by the management-maturity score.

Dashboard

Intuitive Dashboard

Get a complete view of your attack surface at a glance

app.pentatrail.co/dashboard/asm

PentaTrail Dashboard — contract summary view

Ready to See Your Attack Surface?

14-day free trial. Start immediately.

Start Your 14-Day Free Trial

Use Cases

Attack Surface Management for Every Scenario

For any organization that needs to manage its external attack surface

Continuous ASM

Discover shadow IT and unmanaged subdomains across 7 asset categories. Track management-maturity score over time and continuously reduce risk before incidents occur

Cloud Exposure Check

Surface cloud buckets and unintended public resources across AWS, GCP, and Azure. Business-impact scoring prioritizes the highest-risk items first

M&A Due Diligence

Discover acquisition targets' external assets comprehensively and validate vulnerabilities with AI deep scanning. A single score report surfaces IT risk for executive review

Small-Team Security Operations

AI auto-generates per-vulnerability remediation steps and priorities. Even a one-person IT team can run continuous attack-surface management — no specialist expertise required

Pre-Launch Check

Validate new services and APIs before launch with AI deep scanning. Detect information exposure and misconfigurations non-destructively, with auto-generated remediation steps

Post-Incident Reassessment

Re-inventory your attack surface across 7 asset categories after an incident. BI score × threat level identifies breach scope and quantifies prevention priorities

Audit & Certification

Auto-update asset inventories for ISMS, SOC 2, and other audits. Management-maturity scores and remediation history serve as ready-to-submit continuous-evaluation evidence

Quarterly Executive Report

Report quantitatively with business-impact (BI) score distribution and score trends. Explain security ROI to leadership in numbers, not gut feeling

Threat Landscape

The Numbers Tell the Story

84%

Intrusion via External-Facing Devices

Over 80% of ransomware breaches originated from external-facing devices such as VPN appliances and remote desktop services

Source: National Police Agency of Japan, H1 2025

Surge in Edge Device Exploitation

Vulnerability attacks targeting external-facing devices like VPNs and edge appliances surged over 7x year-over-year. Zero-day exploitation observed

Source: Verizon DBIR 2025

73%

Incidents from Unmanaged Assets

Over 70% of security leaders reported experiencing incidents caused by previously unknown or unmanaged assets

Source: Trend Micro / CSO Online (2025)

Pricing

$350$280/month

Founding Special Price (Base plan, before tax)

Up to 3 origin domains

Up to 5 users

All 5 stages of CTEM (all-in-one)

Auto-discovery across 7 asset categories

Vulnerability Scan + AI Deep Scan included

Change detection / timeline

Weekly score report

Start 14-day Free Trial

Start Managing Your Attack Surface with Just One Domain

From $280/month (USD) — start your 14-day free trial and deploy the CTEM framework immediately.