EXTERNAL CYBER MONITORING FOR SMBS

WHAT AN ATTACKER SEES
OF YOUR COMPANY.

KryptaScope observes your company from the Internet, like an attacker would. And hands you the report — no install, no access to your systems.

No account needed · Public sources only · No personal data collected
Aperçu — votre carte d'attaque après scan
kryptascope-demoSOUS-DOMAINE INCONNUlegacy.kryptascope-demo.frPANNEAU ADMINaccessible publiquementCERTIFICAT EXPIRÉstaging.kryptascope-demo.frSERVICE EXPOSÉbase de donnéesDNS — OKSPF / DMARCDOMAINE SOSIEkryptascopedemo.fr
Critique À examiner Sous contrôle
Demo

See the tool running on a real domain

Demo recorded on a demonstration domain we control — you see exactly what appears in your dashboard after a scan.

0:00
The attacker's angle
Why seeing your company from the outside changes everything.
0:08
Attack surface
Subdomains, exposed services, public leaks on a single screen.
0:25
What to do
Step-by-step guided workflow for each critical finding.
0:45
Tracking & alerts
Evolving score, notifications, traceability for your dossier.
1:10
PDF ready to share
Factual document under your name, not a legal deliverable.
🇫🇷 EU-hosted · No access to your systems
Real screenshots

Here is the tool as delivered

Screenshots taken on a demonstration account with a domain we control — not wireframes.

Dashboard — KryptaScope
Dashboard
Overview: score, compromised accounts, attack surface, monthly narrative.
Guided workflow — KryptaScope
Guided workflow
For each critical finding: why, what to do, direct link to the remediation page.
Shareable report — KryptaScope
Shareable report
Factual PDF under your name — insurer, audit, due diligence, COMEX.
Cas d'usage typiques

Ce qu'on voit chez les PME comme la vôtre

Détecté en 24h

Agence immobilière · 18 personnes

Un sous-domaine d'un ancien site preprod expose un panneau d'administration accessible depuis Internet. KryptaScope l'identifie 24h après le premier scan ; le presta IT le ferme dans la journée.

Mot de passe à changer

Cabinet de conseil · 35 personnes

Un mot de passe d'un compte direction apparaît dans une fuite publique de 2024. KryptaScope le remonte en sévérité critique avec le lien direct vers la page de réinitialisation.

Domaine sosie identifié

PME industrielle · 80 personnes

Un domaine sosie est enregistré la veille pour usurper le site corporate. KryptaScope l'alerte avec un score de risque de 78/100, action recommandée : signaler à l'AFNIC.

Scénarios illustratifs — aucun client réel n'est cité.
Aperçu du livrable

Téléchargez un rapport de posture exemple

Données fictives sur une PME illustrative. Vous voyez la structure exacte de ce que vous générerez après vos premiers scans : posture, périmètre surveillé, registre synthétique, mentions juridiques.

Document préparatoire — à valider par votre DPO ou conseil juridique avant transmission.
Rapport posture (PDF)Notification CNIL exemple
3 promises, not 30 features

WHAT KRYPTASCOPE DOES

01

See what is exposed

Subdomains, accessible services, DNS configuration, GitHub secrets, lookalike domains. Exhaustive map of what is visible from the Internet.

Attack surface
GitHub secrets
Email config (SPF/DMARC)
Lookalike domains
02

Get alerted before an attacker acts

Password leaks, newly exposed services, freshly published secrets, active impersonation domains. Automatic notification at your chosen frequency.

Continuous monitoring
Slack, Teams, email alerts
Remediation workflow
90-day history
03

Have a monthly report ready to share

To present to your clients, your insurer, your management. Document under your name, kept up to date automatically, in one click.

Monthly PDF under your name
Trend over time
Audit documentation
White-label (MSP)
How it works in 60 seconds

3 STEPS. NOTHING TO INSTALL.

acme.fr
01

You enter your domain

No company ID, no credit card. A magic link lands in your work inbox to confirm you're authorised.

02

Full scan in 30 seconds

External attack surface, work accounts in public breaches, GitHub secrets, lookalikes — no access to your systems.

03

Your PDF is ready

Shareable report for leadership, clients or your insurer. Pre-filled authority notification in case of incident — to validate with your DPO.

Why automate

BEFORE / AFTER KRYPTASCOPE

WITHOUT KRYPTASCOPE
You learn about a breach from your client
The staging-2019 server is still up — nobody knows
Your prospect asks for a cyber audit, you improvise
An AWS key has been exposed on GitHub for 4 months
No document to hand to your insurer
WITH KRYPTASCOPE
Detection within 24 hours when a signal appears
Full map of exposed subdomains
Monthly report ready to share in 1 click
Instant alert when a key leaks on GitHub
Documentation for audits, insurance, clients
Our commitment

We don't touch anything.

No agent. No admin access. No proxy. No password stored. No connection to your systems. Everything is observed from the outside — like an attacker would, except we hand you the report.

Zero access to your systems
We never connect to your servers, emails or files.
Public sources only
DNS, TLS certificates, public GitHub, public breach databases. Everything is already in the wild.
No passwords stored
Exposed passwords are never stored in plain text.
Hosted in Europe
Supabase infrastructure (AWS Frankfurt). GDPR compliant by default.

START BY SCANNING YOUR DOMAIN

Results in 10 seconds. No account needed. Nothing to install.

For IT providers & MSPs

MANAGE YOUR CLIENTS' SECURITY FROM ONE DASHBOARD

Multi-tenant dashboard, consolidated view, centralized alerts, PDF reports per client, API for your existing tools.