Overview
Scan Engine Creation Wizard
Scan Engine Creation Wizard
Branding Customization
Pre-made Scan Engines

Product video
Enterprise Attack Surface Management & Automated Reconnaissance
HailBytes ASM is an enterprise-grade automated reconnaissance platform that transforms weeks of manual security testing into hours through intelligent automation, AI-powered analysis, and continuous monitoring.
What You Get
- 20+ integrated security tools orchestrated in automated workflows
- AI-powered vulnerability analysis with GPT-4 and local LLM support
- Continuous attack surface monitoring with automated change detection
- Multi-project collaboration with role-based access control
- Container-based deployment with GPU support for AI workloads
- REST API for automation and CI/CD integration
- Standard support included (3-5 day response) - upgrade available
Perfect For
- Penetration testers conducting client reconnaissance
- Red teams automating reconnaissance workflows
- Security consultancies managing multiple client assessments
- Corporate security teams monitoring attack surface continuously
- DevSecOps teams integrating security into CI/CD pipelines
Key Features
Automated Reconnaissance Workflow
- Subdomain Discovery: Subfinder, Amass, Assetfinder integration
- Port Scanning: Nmap, Masscan automated scanning
- Technology Detection: Wappalyzer, WhatWeb, Webanalyze
- Vulnerability Scanning: Nuclei templates (10,000+ CVEs)
- Directory Bruteforcing: FFUF, Dirsearch, GoBuster
- Screenshot Capture: Automated visual reconnaissance
- DNS Analysis: Comprehensive DNS enumeration
- Certificate Transparency: CT log monitoring
AI-Powered Analysis
- GPT-4 Integration: Cloud-based AI vulnerability assessment
- Ollama Support: On-premise LLM for air-gapped environments
- GPU Acceleration: Optional GPU instances for faster AI processing
- Automatic Report Generation: AI-generated executive summaries
- Exploitation Guidance: Context-aware attack suggestions
- Natural Language Queries: Ask questions about your findings
Continuous Monitoring
- Scheduled Scans: Automated periodic reconnaissance
- Change Detection: Alert on new subdomains, endpoints, vulnerabilities
- Historical Tracking: Trend analysis and attack surface growth visualization
- Real-time Notifications: Slack, Discord, Telegram integration
- Mean Time to Discovery: Catch vulnerabilities before attackers
Collaboration & Workflow
- Multi-Project Support: Isolate client engagements or business units
- Role-Based Access: Admin, Auditor, Viewer permissions
- Team Collaboration: Shared notes and findings
- Workspace Isolation: Secure multi-tenant architecture
- API Integration: Automate workflows and exports
Data Management & Reporting
- Centralized Database: PostgreSQL with full-text search
- Export Capabilities: JSON, CSV, PDF reports
- Custom Report Templates: Brand reports for clients
- SIEM Integration: Send findings to Splunk, ELK, Azure Sentinel
- Historical Analysis: Compare scans over time
Deployment Details
Infrastructure Included
- Compute: EC2 instance (t3.medium to d8s_v3/GPU instances)
- Database: PostgreSQL (included in VM pricing)
- Cache: Redis for performance optimization
- Storage: S3-compatible storage for screenshots and artifacts
- Networking: VPC, security groups, load balancer optional
Setup Time
- 5-10 minutes automated CloudFormation deployment
- Pre-configured with all 20+ security tools
- Production-ready out of the box
- Optional GPU acceleration for AI workloads
Security & Compliance
- SOC 2 Type II compliant infrastructure
- Data encryption at rest and in transit
- Private VPC deployment
- Role-based access control
- Audit logging enabled
- GDPR/CCPA compliant
Why HailBytes ASM?
vs. Manual Reconnaissance
- 80% time savings - weeks to hours
- Consistent methodology - repeatable processes
- Centralized data - no more scattered CSV/JSON files
- Continuous monitoring - vs. point-in-time assessments
vs. Commercial ASM Platforms (Censys, Shodan, etc.)
- 50-70% cost savings - $350/mo vs. $20K-50K/year
- Complete data ownership - all data in your AWS account
- Full customization - modify scans, add custom tools
- No vendor lock-in - portable container architecture
- GPU acceleration - optional for AI workloads
Getting Started
- Subscribe on AWS Marketplace (uses your AWS committed spend)
- Deploy using our CloudFormation template (5-10 minutes)
- Configure your first reconnaissance project
- Launch automated scans and review AI-powered insights
Highlights
- 20+ integrated security tools with automated workflows
- AI-powered vulnerability analysis with GPT-4 and Ollama
- Continuous monitoring with real-time change detection
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
Pricing
Free trial
Dimension | Cost/hour |
|---|---|
t3.xlarge Recommended | $0.96 |
c5a.12xlarge | $11.52 |
c5a.8xlarge | $7.68 |
t3.large | $0.48 |
t3.2xlarge | $1.92 |
c5a.16xlarge | $15.36 |
c5.4xlarge | $3.84 |
Vendor refund policy
HailBytes Refund Policy: Full refunds available within 24 hours of deployment for unresolved technical issues only.
To request a refund: Stop all instances Email support@hailbytes.com with Instance ID and issue details
Refunds not available for: Usage beyond 24 hours Non-technical reasons Multiple deployment attempts Changed requirements
Contact our Discord community for immediate technical support. Enterprise customers refer to contract terms.
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
HailBytes ASM v1.5585 - July 15, 2026
This release adds threat-intel and cost-visibility features, hardens SIEM delivery and multi-tenant boundaries, and improves cloud first-boot reliability.
New features
- Pulsedive added as a bring-your-own threat-intel provider.
- SIEM dead-letter replay (Phase 2): failed event deliveries can be retried.
- Failing SIEM/ticketing integrations are now surfaced on the dashboard.
- Per-project budget UI (Cost-by-Project) for tracking scan spend.
Security
- Tenant isolation enforced on TAXII 2.1 collection endpoints.
- Closed an inline-onclick XSS vector in the LLM toolkit model dropdown.
AI / LLM
- Switching LLM providers now deactivates the others automatically.
- Attack-suggestion and vulnerability-report responses report the model actually used; repaired a broken LLM vulnerability-report endpoint.
Reliability & deployment
- Hardened AWS/Azure first-boot: secret generation, ALLOWED_HOSTS, IMDS hostname handling, and migration/startup race conditions.
- Malformed asset-ingest webhooks no longer consume their event ID.
Additional details
Usage instructions
Initial Setup
- Launch the HailBytes ASM instance from AWS Marketplace.
- Recommended instance type: t3.large (minimum: 2 vCPU, 8 GB RAM, 40 GB disk).
- Default OS user: ubuntu (SSH key-based auth on port 22).
- Configure network security:
- Inbound TCP/443 (HTTPS) from your admin CIDR for the HailBytes ASM web UI.
- Inbound TCP/22 (SSH) from your admin CIDR for instance management.
- Outbound 443 to the public internet so scan tools (nuclei, subfinder, amass, etc.) can reach target assets and update their data feeds.
- First boot (5 to 10 minutes):
- The instance bootstraps PostgreSQL, Redis, the Django web app, Hatchet workers, and the bundled recon toolchain (30+ tools) automatically.
- Wait until cloud-init completes before browsing to the UI.
- Access the web console:
- Navigate to https://<EC2-public-DNS>/ in your browser.
- You will see a self-signed TLS warning on first launch; accept it or install your own certificate (see "TLS and Custom domain" below).
- Create the first admin account:
- SSH to the instance: ssh ubuntu@<EC2-public-DNS>
- Run: sudo docker compose exec web python manage.py createsuperuser
- Log in to the web UI with the credentials you just created.
Configuration
- API keys for AI analysis (OpenAI, Anthropic, Google Gemini, OpenAI-compatible endpoints such as OpenRouter / NVIDIA NIM / vLLM, plus self-hosted Ollama), notification webhooks (Slack, Discord, Telegram, PagerDuty, Opsgenie), ticketing (Jira, ServiceNow, GitHub Issues, GitLab Issues), and SIEM integrations (Splunk HEC, Microsoft Sentinel, generic Syslog or Webhook) are all configured from Settings inside the web UI. No file edits required.
- Cloud asset discovery for AWS, Azure, GCP, and Cloudflare is configured under Settings, Cloud Connectors.
- Threat intelligence providers (Shodan, Censys, GreyNoise, VirusTotal, AbuseIPDB, HIBP, MISP, OpenCTI, AlienVault OTX, Pulsedive) are added under Settings, Threat Intelligence.
- Identity provisioning via SCIM 2.0 (Okta, Azure AD, Google Workspace, OneLogin) and LDAP or Active Directory direct-bind authentication are configured under Settings, Identity.
- Scan engines can be customized through the in-app Engine Wizard (Goal, Depth, Notifications) without writing YAML.
- Scheduled and continuous scans are managed under Targets, Schedule.
- Recurring PDF report delivery (daily, weekly, monthly) is configured per project under Reports, Schedule.
TLS and Custom domain
- Replace /etc/nginx/certs/hailbytes_asm.pem (certificate) and /etc/nginx/certs/hailbytes_asm_rsa.key (private key) with your own; add your chain to /etc/nginx/certs/hailbytes_asm_chain.pem if you have one.
- Restart the proxy: sudo docker compose restart proxy
Upgrades
- Pull the latest images and restart: sudo docker compose pull && sudo docker compose up -d
- Database migrations run automatically on container start, protected by a Postgres advisory lock so multi-replica deployments upgrade safely.
Support and Documentation
- Product docs: https://hailbytes.com/asm
- Support: support@hailbytes.com
- Issues and feature requests: https://github.com/HailBytes/hailbytes-asm/issues
Resources
Vendor resources
Support
Vendor support
Support Resources
- Email: security-support@hailbytes.com
- Documentation: https://hailbytes.com/pages/documentation/
- Product Page: https://hailbytes.com/asm/
- Support Plans: https://hailbytes.com/pages/support-pricing/
Questions? Visit https://hailbytes.com or email sales@hailbytes.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.