CyCognito Integrates with Cloudflare for Direct Access to DNS

CyCognito is always seeking additional methods to discover customer external-facing assets. One such resource is an integration with content delivery network (CDN) management systems. Many organizations manage most or all their DNS records with CDNs, as they provide IT and security teams with centralized management visibility. 

DNS records are very important for tracking externally exposed assets, since they contain the organization’s FQDNs, CNAMES, and resolved IP addresses, which may point to cloud, on-prem, or 3rd party-owned assets. CDNs may also contain old, unmaintained, and forgotten DNS records that could point to live but unmaintained assets with significant vulnerabilities. 

Introducing CyCognito’s CloudFlare Connector

CyCognito is excited to announce the addition of Cloudflare CDN support to its Cloud Connector capabilities. This new integration allows users to connect their CyCognito account to their Cloudflare accounts, enabling the connector to access and analyze all DNS records managed within. Once assets from DNS records are fetched, CyCognito performs discovery of additional related assets and automated vulnerability testing on all discovered assets (Figure 1).​ This approach greatly extends the asset discovery capability, allowing organizations to achieve comprehensive visibility into their assets, including those that may have become outdated or forgotten over time. 

Figure 1: CyCognito Cloud Connector For Cloudflare Workflow

Key Benefits and Use Cases

There are multiple benefits associated with this automated integration into the CyCognito platform:

• Enhances Security: By uncovering previously unmonitored, hidden, unmanaged, or forgotten assets, the connector identifies potential vulnerabilities that malicious actors could exploit. This proactive discovery illuminates shadow IT components, allowing security practitioners to address these otherwise-hidden risks.​
• Boosts Accuracy: Utilizing this connector ensures that 100% of the assets managed in the Cloudflare account are discovered and used as seeds for further asset discovery and vulnerability testing. This approach ensures that the discovered assets really are related to the customer’s organization.
• Simplifies Workflows: The Cloudflare connector setup involves a simple, single-form process. Once set-up, the connector automatically fetches assets from the Cloudflare account that are then integrated into the attack surface. The platform monitors the connector’s activity, indicating the date and number of assets retrieved in the latest synchronization. ​
• Improves Efficiency: The Cloudflare connector enables organizations to retrieve all managed assets in a single action, continuously monitoring the Cloudflare account for changes and newly added assets. ​

How to Get Started

Follow these steps to leverage the enhanced capabilities of the CyCognito Cloud Connector for Cloudflare:​

1. Set up a connection token in your Cloudflare account
2. Set up the Cloudflare Connector in your CyCognito account (Figure 2)
   • Access the CyCognito platform and navigate to the Cloud Connector section.​ 
   • Elect to add a new Cloudflare connector
   • Fill in the new connector form.
3. Once configured, the connector will regularly fetch assets from your Cloudflare account. These assets will be integrated into your attack surface upon your next data update.

Figure 2: CyCognito Cloudflare Connector Configuration

CyCognito Cloud Connectors for Comprehensive Cloud Visibility

Cloud Connectors are a built-in feature of the CyCognito platform. Cloud Connectors offer organizations comprehensive visibility into external-facing assets managed within their cloud infrastructures. By seamlessly integrating with cloud service providers such as AWS, Azure, and GCP, CyCognito’s Cloud Connector uses the discovered cloud assets as seeds for further asset discovery. 

In this way the CyCognito platform identifies assets that might otherwise go unnoticed—like web applications, email servers, and external IaaS—enabling a more extensive mapping of the organization’s attack surface. 

Each identified asset undergoes rigorous automated security testing to detect vulnerabilities and determine asset security scores. All assets and security findings are integrated into the customer’s overall attack surface to provide a comprehensive external attack surface state analysis.

Discover, Monitor and Test Your Assets with CyCognito

Incorporating the CyCognito Cloud Connector for Cloudflare into your security strategy ensures that your organization’s assets are comprehensively monitored and protected. With the new Cloudflare integration, you can now achieve even greater visibility and control over your digital footprint. 

Current customers, enable the Cloud Connector in your CyCognito platform today to fortify your security posture and stay ahead of potential threats!

Interested in learning more? Reach out today to schedule a demo of the CyCognito platform and see how we will help your team reduce noise from dynamic IP addressed-based assets and maintain a continuous security posture.