Skip to content
All services
Fast · in minutes

External Vulnerability Scan

The external vulnerability scan is the fastest way to see your domain the way an attacker does. SnapScan maps your reachable attack surface and tests it against known vulnerabilities – no installation, no agent, started straight from the browser.

What we check

Here is what the External scan covers – concrete and verifiable.

  • Subdomain enumeration and resolution of reachable hosts
  • Open ports and exposed web services
  • SSL/TLS configuration, expired and weak certificates
  • Known CVEs and outdated components (nuclei templates)
  • Common misconfigurations and unprotected endpoints
  • Security headers and obvious information leaks

Your benefits

What the External scan actually gives you – beyond the pure technology.

Minutes, not days

A time-boxed scan quickly delivers a solid picture of your external exposure – ideal as a first assessment or recurring check.

No setup required

Enter a domain, prove authorisation, start the scan. No agent, no installation, no configuration.

Clear prioritisation

Findings are sorted by severity and come with a recommended action – you instantly know what to fix first.

White-label report

An understandable report with executive summary and overall risk rating – shareable with management and clients.

How it works

  1. 1

    Provide a domain

    Enter a domain and prove authorisation via email-domain match or a DNS-TXT record.

  2. 2

    Scan runs

    SnapScan maps the attack surface and probes reachable services – over controlled VPN egress.

  3. 3

    Get the report

    Results sorted by severity, with evidence and recommendations – as white-label HTML.

Typical findings

  • Outdated web component with a known CVEhigh
  • Expired or weak TLS certificatemedium
  • Exposed admin or staging subdomainmedium
  • Missing security headerslow

Example finding categories. Actual results depend on your environment.

Use cases

  • First security assessment of a new domain or brand
  • Recurring self-check of your external exposure
  • Quick due diligence before onboarding a vendor
  • Raising awareness with management and stakeholders using a concrete report

Frequently asked questions

Do I need authorisation?

Yes. You prove authorisation via an email-domain match or a DNS-TXT record. Only scan domains you are authorised to test.

How long does a scan take?

The fast external scan is time-boxed and usually returns a result within a few minutes.

Is any data exfiltrated?

No. Scan traffic runs over controlled VPN egress with a kill switch; SnapScan is built for sovereign operation in the EU.

Goes well with

Ready for the External scan?

Start with a free scan or talk to us about the plan that fits your use case.