Intruder

Intruder is an enterprise-grade vulnerability scanner and attack surface management (ASM) platform designed for continuous exposure management. It automates the discovery of external-facing assets and identifies misconfigurations or software flaws across hybrid environments. For offensive security professionals, it serves as a persistent reconnaissance and initial access discovery engine.

Key Features

• Attack Surface Management: Automatically discovers shadow IT, subdomains, and newly exposed IP addresses.
• Continuous Vulnerability Scanning: Beyond scheduled tasks, it tracks changes and performs proactive scans when new CVEs are disclosed.
• Cloud Security (CSPM): Integrates with AWS, Azure, and GCP to detect cloud-specific misconfigurations and orphaned resources.
• DAST & API Security: Authenticated application scanning and API endpoint testing for common vulnerabilities like SQLi, XSS, and broken auth.
• Risk-Based Prioritization: Filters noise by correlating vulnerabilities with exploitability and business context.
• GregAI: An AI-driven security analyst that assists in triage and remediation guidance to accelerate technical workflows.