TLS Protect Cloud: Discovery Methods


Posted on May 24, 2021

What you’ll learn

TLS Protect Cloud performs discovery in 3 ways.

  1. Domain discovery will use a combination of Venafi’s own propriety scanning capability of the IPv4 space and 3rd party capabilities expanding our search to sources like CT Logs and elsewhere find all active certificates associated with that domain.
  2. External discovery is targeted, finding certificates located at an FQDN (Fully Qualified Domain Name) or IP address that you specify.
  3. Internal discovery is performed using a lightweight executable that will find certificates internal to your network by performing a TLS handshake on the locations you specify. You can specify either IP address, IP address range or with Linux environments by FQDN.

A pro tip is to perform internal discovery from an Application. This way you can specify the port or range of ports you wish to scan.

Try TLS Protect Cloud for free.

This site uses cookies to offer you a better experience. If you do not want us to use cookies, please update your browser settings accordingly.
Find out more on how we use cookies.