Exposure Monitoring
Exposure Monitoring is available on Pro, Business, and Agency plans.
Exposure Monitoring proactively scans your domains for security vulnerabilities, giving you an actionable score and a list of prioritised findings before attackers find them first.
What is exposure monitoring
Exposure scans analyse each domain for a range of security issues including known CVEs affecting detected software, subdomain takeover risks (dangling CNAME records pointing to unclaimed cloud resources), and misconfigured or exposed services. All scans run asynchronously in the background.
Exposure score
Each domain receives an exposure score from 0–100 and a letter grade. Unlike the health score, a lower exposure score is better — it means fewer vulnerabilities were found.
| Grade | Score | Meaning |
|---|---|---|
| A | 80–100 | Minimal or no findings — well-secured domain |
| B | 60–79 | Low-severity findings only |
| C | 40–59 | Medium-severity findings requiring attention |
| D | 20–39 | High-severity findings present |
| F | <20 | Critical vulnerabilities detected — act immediately |
Triggering a scan
Navigate to the Exposure dashboard, select a domain, and click Scan Now. The scan is queued and runs asynchronously. Results are available once the scan completes, typically within a few minutes depending on domain complexity.
Domain ownership verification is required before a scan can run. Learn how to verify a domain.
Reading findings
Each scan produces a list of findings. Every finding includes:
- TypeCategory of finding, e.g. cve, subdomain_takeover, misconfigured_service
- SeverityCritical, High, Medium, or Low — guides remediation priority
- TitleShort human-readable name, e.g. "CVE-2024-1234"
- DescriptionExplanation of the issue and potential impact
- Affected assetThe specific subdomain or service where the issue was found
Severity levels from most to least urgent: Critical → High → Medium → Low.
Portfolios
The Exposure dashboard groups domains by portfolio, displaying an aggregate exposure grade for each group. This gives you a high-level view of which portfolios need attention without having to inspect each domain individually.
See also: Exposure API Reference