A simple workflow for external attack surface monitoring
PortMon gives you a clear external view of your attack surface. Register your IPs, let scheduled scans run, see what's exposed, and track changes over time.
Start Free TrialRegister your IP targets
Start by adding the IP addresses you want to monitor. These are your internet-facing assets—servers, cloud instances, network devices, or any infrastructure exposed to the outside world.
- Add individual IPs or ranges
- Organize targets by environment or criticality
- Maintain an inventory of external-facing assets
- Archive retired targets while preserving history
Recurring scans build your scan history
PortMon runs recurring scans on a schedule to keep your external view current. Each run adds to your scan history so you can see open ports and what changed over time.
- Recurring scheduled scans
- Open ports across common TCP port ranges
- Scan history retained for comparisons
- See ports opened and ports closed over time
Track changes over time
PortMon tracks scan history so you can see what's changed across scheduled runs—ports opening, closing, and exposure drifting.
- Historical trend charts
- New exposures vs. closed ports
- Recurring problems identification
- Improvement or drift over time
Get alerted when something changes
Configure alert policies to get notified when ports open, ports close, or exposure changes.
- Threshold-based alert policies
- Alerts on newly opened ports
- Alerts on closed ports
- Notifications when exposure changes
Generate reports and evidence
When auditors, insurers, or customers ask about your external security posture, you have the evidence ready. Export scan reports and show your continuous monitoring story.
- Export-ready scan reports
- Audit-friendly documentation
- Evidence for compliance frameworks
- Historical findings and remediation timeline
Ready to see what you're exposing?
Get started with PortMon and gain visibility into your external attack surface. No agents, no heavyweight setup.