Attack Surface Mapper
Ghost 2210 Β· Tool 23
PASSIVE RECON ONLY Β· AUTHORIZED TARGETS
Examples (your own domains only): scanme.nmap.org example.com github.com cloudflare.com

Enter a domain to map its attack surface

All discovery uses passive public data sources β€” no active probing, no packets sent to the target. Only scan domains you own or are explicitly authorized to assess.

crt.sh (CT logs) Cloudflare DoH Shodan InternetDB SecurityTrails-style DNS HackerTarget API DNS records TLS cert analysis