Swascan

Swascan is a security testing and threat intelligence platform offered by Swascan Srl. According to the vendor, the product aims to strengthen the cybersecurity framework of enterprises. It provides a wide range of services including vulnerability assessment, network scan, code review, and phishing attack simulation. Swascan caters to companies of all sizes, from small businesses to large enterprises. The product is used by various professionals such as IT professionals, cybersecurity analysts, risk and compliance officers, security operations center (SOC) teams, and financial institutions.

Key Features

Domain Threat Intelligence: According to the vendor, this feature allows users to identify public and semi-public information about a specific target available at the OSINT and CLOSINT levels. It helps in monitoring and analyzing a company's domain information present on the dark web and deep web. The feature also aims to discover the presence of botnets related to the devices of employees, suppliers, and customers.

Cyber Threat Intelligence: The vendor claims that this feature analyzes corporate domain information present at dark web and deep web levels. It helps in discovering the presence of botnets related to the devices of employees, suppliers, and customers. Additionally, it provides insights into data breaches, IP reputation, and miscellaneous risks.

Daily Early Warning: According to the vendor, this feature sends daily notifications regarding information that emerges about a specific target through threat intelligence activities. It highlights points of attention such as data leaks and pastes. The feature aims to help in proactive risk management and incident response.

Social Threat Intelligence: The vendor states that this feature determines the company's exposure to social engineering risk. It collects useful information on the target, such as mapping of IP addresses and virtual hosts. The feature aims to help in identifying potential social engineering threats and vulnerabilities.

Technology Monitoring: According to the vendor, this feature identifies new CVE, end-of-life, and end-of-support vulnerabilities related to company technologies. It assists in patch management activities and helps in staying updated with the latest vulnerabilities and risks.

Network Scan: The vendor claims that this feature scans infrastructure and devices to identify security vulnerabilities and critical issues. It provides a vulnerability analysis to quantify risk levels and establish corrective actions. The feature aims to help in maintaining a secure network environment.

Vulnerability Assessment: According to the vendor, this feature scans websites and web applications to identify security vulnerabilities and critical issues. It provides a vulnerability analysis to quantify risk levels and establish corrective actions. The feature aims to help in securing web assets and preventing potential attacks.

Security Assessment: The vendor states that this feature highlights security vulnerabilities and issues present in the infrastructure. It provides a comprehensive assessment of the company's security posture. The feature aims to help in identifying weaknesses and implementing effective countermeasures.

Code Review: According to the vendor, this feature identifies, analyzes, and resolves security issues and source code vulnerabilities. It provides an action plan and remediation plan for code improvements. The feature aims to help in ensuring secure coding practices and reducing potential risks.

Phishing Attack Simulation: The vendor claims that this feature identifies corporate exposure to phishing risk. It educates employees to recognize and identify potentially harmful emails through an awareness course. The feature aims to help in strengthening the organization's resilience against phishing attacks.