Beyond vulnerability scanning: Enhancing attack surface management for more proactive security

February 17, 2023

Randori Named Leader in GigaOm Radar for Attack Surface Management

By: Sanara Marsh

Share on facebook
Share on twitter
Share on linkedin

Randori is the only vendor to score “Exceptional” across all the Attack Surface Management Evaluation Metrics. 

As our world transforms – whether it be migrating an asset to the cloud, exposing new services to support a near permanent remote workforce or managing risk associated with a new merger – organizations everywhere are clamoring to manage their expanding attack surface.

Attack Surface Management is designed to continually discover your attack surface, accurately prioritize these findings based on adversarial temptation, and integrate seamlessly into your security programs and tools to drive remediation. 

The recently released GigaOm Radar for Attack Surface Management (ASM) security decision makers with critical insights into the dynamic ASM space.  

Randori Highlights: 

  • GigaOm analysts place Randori as a leader in the latest GigaOm Radar for Attack Surface Management.  
  • Randori is the only company to score “Exceptional” across all Evaluation Metrics. 
  • GigaOm applauds Randori risk scoring and states – “This capability is ultimately what ASM tools set out to achieve, but often fall short of delivering.”



What is the GigaOm Radar for Attack Surface Management?

GigaOm Radar report: A forward-looking analysis that plots the relative value and progression of vendor solutions along multiple axes based on strategy and execution. The Radar report includes a breakdown of each vendor’s offering in the sector. 

This report takes into consideration several customer references as well as in-depth briefing and demo to assess the vendors’ capabilities. 

Click to download the GigaOm Radar for Attack Surface Management. 



Randori, the most comprehensive Attack Surface Management solution.  

Randori is a Unified Offensive Security Platform designed to bring clarity to your cyber risk through the convergence of external attack surface management and continuous automated red teaming. This combination gives organizations a powerful, scalable, and easy-to-understand method of continuously monitoring their cyber risk. 

Randori’s recent merger with IBM build on these strengths through services such as Managed ASM, as well as native integrations into QRadar SIEM and SOAR designed to accelerate time to response. 


Throughout GigaOm’s ASM vendor evaluation process, GigaOm’s analysts evaluated ASM Vendors on a set of criteria including: Extensibility, Frequency of Discovery, Risk Scoring, Asset Categorization and among others. Randori’s comprehensive ASM solution excelled across all these criteria.    


Integration is integral to visibility. As GigaOM noted, Randori is one of the only vendors that offers bi-directional integrations into organizations’ existing security stacks. This removes the data silo and inaccuracy problems that one-way integrations create.  

“Recon’s ability to integrate with other security tooling is a strength. It includes native bi-directional integrations with many popular tools as well as an open API customers can leverage to develop bespoke integrations.” 

Frequency of Discovery  

GigaOm was impressed with Randori’s method of discovery. They noted how Randori starts with an organization’s domain and expands through both active and passive discovery techniques. This discovery method ensures the identification of IPv4 and IPv6 assets, filters out inactive devices, and helps security teams focus on the assets that pose the greatest risk to their environments. 

“The Recon solution has broad and robust passive and active scanning capabilities.” 

Risk Scoring  

One of the most impressive features that GigaOm reported on was Randori’s patent pending prioritization model, Target Temptation. This model leverages adversarial insights from real world threat behavior and techniques to give organizations context and accuracy when making decisions. Combined with an organization’s unique business context, Target Temptation allows Randori to prioritize critical risks far quicker than its competitors. 

“This capability is ultimately what ASM tools set out to achieve, but often fall short of delivering.”

Asset Categorization  

Another, capability that sets Randori apart is its unique ability to reduce alert redundancy through the correlation of detections into a single target. No other ASM vendor can do this. Across the other vendors, GigaOm analyzed a single target could result in as many as 15 separate issues in competitive consoles. With Randori, a target focuses on an attackable piece of software which ties together associated IPs, domains, CVEs, and more. This approach ensures security teams accelerate time to response through reduced alert redundancy.  

Get an Attacker’s View of Your Organization with Randori 

Attack Surface Management allows organizations to continually discover their attack surface, accurately prioritize these findings based on adversarial temptation, and integrate seamlessly into security tools and programs to drive remediation.  

To get a personalized view into your attack surface, and learn why Randori is a leader in attack surface management, sign up for a free assessment with Randori today. 





Gain an Attacker's Perspective

Uncover your true attack surface with the only ASM platform built by attackers. Stay one step ahead of cyber-criminals, hacktivists and nation-state attackers, by seeing your perimeter as they see it.