External discovery finds and shows SSL certificates for better managing your network. The scanning is non-invasive and can be used on any server that can be accessed over a standard SSL/TLS connection. External discovery has three target types:
- Basic — scans only one domain with its subdomains (available in paid plans). Keyhub will search for subdomains in publicly available resources, and then perform SSL scan for them.
- Domain list — scans a comma-separated list of domains.
- IP Range — scans up to 10,000 targets per scan using comma-separated public IPs or IP-ranges for input (available in paid plans).
It can be difficult to keep track of all the certificates on your network. With Keyhub discovery you can scan the network or a range of public IP addresses to see details about all the certificates in use, including the issuing CA and their expiration dates.