Help Center
News
Go back to application
Help Center
News
Go back to application
Automated security scans
How is the security score calculatedHow is our DNSSEC assessment performedHow is our SPF assessment performedHow is our DMARC assessment performedHow our SSL/TLS assessment is performedHow our Security Headers assessment is performedHow our Potential Vulnerability assessment is performedHow our Blocklist assessment is performedHow our Open Ports assessment is performedHow our Active Vulnerability scanner worksHow to get the best results from our attack surface scans?
Digital footprint analysis
How do we uncover Applications in the digital footprintHow do we uncover IP addresses in the digital footprintHow do we uncover Software used in the digital footprintHow do we uncover Cloud Storage in the digital footprintHow do we uncover Email Addresses in the digital footprintHow do we uncover Files in the digital footprintHow do we uncover Similar Domains in the digital footprint
Account management
How to add or delete primary domains from your digital footprintHow to add or delete users from your accountHow can I impose 2FA on my company's users?Setting up SSO authentication with your identity provider (IdP)
Managing suppliers
Adding suppliers to your supply chain on the Ceeyu platformHow to configure supply chain risk scoring
Building questionnaires
Establishing parent child relationships between questionsHow to test a questionnaireHow to configure rating of a questionnaireHow to configure assessment workflows
Integrations
Integrating Ceeyu with third-party applications
Trust Center
Trust Center overviewManaging content in your Trust CenterManaging access to your Trust Portal contentCustomizing Your Trust Portal BrandingSetting Up a Custom Domain for Your Trust PortalManaging certifications in your Trust Center

How do we uncover Applications in the digital footprint

Starting from your top-level domains (yourcompany.com) or primary hosts (yourcompany.zendesk.com), we identify all subdomains used in your business through a series of enumeration techniques.

Our scanners send HTTP requests to all listed subdomains to check which of them contain a web application. If our scanner does not receive an error message after the request, the subdomain is listed here below. Some additional information is provided, such as the IP address(es) used to reach the application, if SSL is implemented or not, ...

Note that not only web servers are detected. Other applications also sometimes use HTTP, and are listed as such here, for example:

  • REST (Representational State Transfer): This is an architectural style for building APIs. RESTful APIs use HTTP to perform CRUD (Create, Read, Update, Delete) operations on resources.
  • SOAP (Simple Object Access Protocol): This is a messaging protocol used to exchange structured information between applications. SOAP uses XML to encode messages and HTTP to transport them.
  • GraphQL: This is a query language for APIs developed by Facebook. GraphQL allows clients to query only the data they need, which can reduce network overhead and improve performance.
  • WebSocket: This is a protocol that provides full-duplex communication channels over a single TCP connection. WebSocket allows real-time communication between client and server.
  • FTP: Some FTP servers use HTTP to transfer data in some scenarios.

Was this article helpful?

Powered by Product Fruits