Skip to content Skip to navigation Skip to footer

Overview

FortiRecon Digital Risk Protection (DRP), a SaaS-based service, includes Attack Surface Management, Brand Protection, and Adversary Centric Intelligence (ACI). Part of the Fortinet SecOps platform, FortiRecon shows what adversaries are seeing, doing, and planning. This helps you counter attacks at the reconnaissance phase and significantly reduce the risk, time, and cost of later-stage threat mitigation.

fortirecon wheel

Get a 3-in-1 Threat Intelligence Service with Single Platform, Centralized Visibility

FortiRecon provides complete visibility into your internal and external attack surfaces and risk exposure. It identifies exposed, vulnerable known and unknown assets and prioritizes remediation. Brand Protection detects and remediates (takes down) cyber-related risks to your brand (fraudulent websites, social media impersonations, rogue mobile apps). Dark web monitoring delivers curated threat intelligence pertinent to your organization, vendors, geo, and sector.

Read the blog

Avoid Blind Spots in Security Monitoring with FortiRecon ASM

FortiRecon alerts on external and internal weak points that attackers can exploit to access your network and move laterally. It continuously monitors and identifies internet-facing unmanaged, vulnerable, and misconfigured assets, security certificate issues, leaked credentials, and vulnerable internal assets. This helps you gain control over all assets. You can prioritize remediations and proactively optimize defenses based on risk exposure, potential and current attacks on software vendors, vulnerabilities exploited in the wild, and more.

Watch Now
fortirecon ui

Identify and Stop Brand Threats in Their Tracks with FortiRecon Brand Protection

Continually monitors the organization’s external brand reputation for typosquatting, rogue applications, phishing campaigns, and brand impersonations via websites and social media, which may impact brand value, integrity, and trust. The service also monitors high-value targets within the organization using Executive Monitoring to identify issues like account takeovers, darknet mentions, social media threats, and stealer infections, which may be used by threat actors in targeted attacks. Takedown service is available for disrupting brand attacks.

fortirecon ui

Go Beyond Pure Threat Intel Feeds with FortiRecon Dark Web Monitoring

FortiRecon ACI uses a powerful combination of artificial intelligence, machine learning, and HUMINT. FortiGuard Labs’ cybersecurity experts provide unrivaled, organization-specific and expertly curated dark web, open source, and technical threat intel, including threat actor insights, and past/potential ransomware attacks on your organization or supply chain vendors. The experts enhance the offering with guidance on prioritizing remediation efforts, and also detect evidence of attacks in process. With this type of info, it is exceedingly easier to act fast and remediate threats quickly.

Features and Benefits

Supply-Chain Vendor Risk Assessment    

Continuously monitors vendor risks including attack surface exposure, ransomware incidents, leaked data

Identification & Mitigation of Brand Attacks

Alerts and takes down threats to your brand such as fake websites, mobile apps, social media accounts

Continuous Internal & External Asset Discovery

Discovers and maps exposed assets that can be exploited by attackers

Simplified Remediation Workflows

Integrates SIEM and SOAR for risk and threat intel correlation and orchestrated response

Takedown Services

Provides rapid response using FortiGuard Labs’ takedown services

Card-Fraud Monitoring

Provides info on credit/debit cards for sale on darknet marketplaces including breach info, images

FortiRecon Use Cases

icon antivirus use cases
Vulnerability Intelligence and Prioritization
Monitors and reports on vulnerabilities and exploits being actively used and discussed on the dark web
Malware Protection
Ransomware Intelligence
Monitors ransomware threat actors’ activities and reports on relevant past and potential targets and TTPs
icon incident management
MITRE ATT&CK View
Maps detections to MITRE ATT&CK framework, provides accurate picture of the TTPs attackers can use or are currently using against you
icon protect users and experience
Actionable Threat Insights
Delivers early warning on risks to your brand, enterprise assets, supply chain vendors, and software
icon benefits reduce cost
Reduced SOC Overhead
Delivers threat intelligence tailored to your organization, gives early warning of adversarial activity
icon shadow it
Far-Reaching Threat Sources
Discovers current/potential threats with dark web, Pastebin, forum, market, and OSINT monitoring by FortiGuard Labs experts

Case Studies

Hong Kong Broadband Network Group (HKBN)
Hong Kong Broadband Network Group (HKBN)
Hong Kong ICT Powerhouse Deploys Fortinet FortiRecon to Detect, Prevent, and Remediate Cyberattacks at the Earliest Possible Stage

Resources

Data Sheets
Blog
Podcast
Solution Briefs
Threat Reports
Threat Intelligence
Videos
Webinars
Extend Threat Intelligence Outside the Perimeter
Extend Threat Intelligence Outside the Perimeter »

FortiRecon delivers easy-to-understand, high-value threat intelligence on attacker-exposed vulnerable assets and threat actors’ activities, tools, and tactics. The service identifies brand impersonations and monitors ransomware and data breach leaks related to your organization and supply chain or third-party vendors. This enables you to take proactive steps to remediate and execute takedowns to minimize risk and exposure.

Security Automation Summit: Extend Threat Intelligence Outside the Perimeter
Security Automation Summit: Extend Threat Intelligence Outside the Perimeter »

Malicious actors are constantly launching cyberattacks, leveraging vulnerable internet-facing assets, domain infringement, phishing websites, rogue mobile apps, fake social media accounts, and more. The earlier you can view what adversaries are seeing, doing, and planning, the faster you can adjust your security posture and respond.

FortiRecon: External Threat Detection and Protection
FortiRecon: External Threat Detection and Protection »

FortiRecon provides organization-specific, expert-curated and actionable External Attack Surface (EASM) intelligence, identifies threat actors’ activity and brand infringement, and monitors ransomware data leaks, to proactively help remediate and execute takedowns or purchase the stolen data on an organization’s behalf. In this session, SVP Product Technology & Solutions, Carl Windsor, introduces FortiRecon, Fortinet’ Digital Risk Protection (DRP) service, using key case studies and real-life business scenarios.

FortiRecon Brand Protection
FortiRecon Brand Protection »

FortiRecon Brand Protection, part of FortiRecon Digital Risk Protection (DRP) service, continuously monitors the organization’s digital footprint for unauthorized changes, typosquatting, rogue applications, credential leaks, brand impersonation on social media, and web-based phishing attacks, which may impact brand value, integrity, and trust.

FortiRecon External Attack Surface Management (EASM)
FortiRecon External Attack Surface Management (EASM) »

FortiRecon External Attack Surface Management, part of FortiRecon Digital Risk Protection (DRP) service, identifies exposed known and unknown enterprise assets and associated vulnerabilities across the company, subsidiaries, and new acquisitions. It discovers servers, credentials, public cloud misconfigurations, and even third-party partner software code vulnerabilities that could be exploited.

FortiRecon AdversaryCentric Intelligence (ACI)
FortiRecon AdversaryCentric Intelligence (ACI) »

FortiRecon Adversary Centric Intelligence (ACI), part of FortiRecon Digital Risk Protection (DRP) service, provides curated, relevant and contextual insights into an organization's imminent threats, enabling them to respond faster to incidents, better understand their attackers, and safeguard their assets.

Free Product Demo

Find how to counter attacks via attack surface management, brand protection, and dark web monitoring with a self-guided demo

What to Expect:

  • Learn how to identify emerging threats to your digital assets, supply chain, and brand
  • See how to prioritize remediation based on exposure
  • Find out how to detect and take down cyber risks

FortiRecon News