Scanning…
Findings
Attack Surface
Subdomains this organisation has published HTTPS certificates for, pulled from public Certificate Transparency logs (crt.sh) — the same passive technique behind Subfinder, Amass and theHarvester. No packets are sent to the target; this reads public records only. Live hosts are confirmed with public DNS lookups.
Monitor
Targets you’ve saved. With monitoring on, Bauslo re-scans them on a schedule and tells you what changed — new subdomains, a dropped grade, new issues. It only re-runs the same passive scan; nothing extra is sent to the target.
Activity
Local and practice-lab targets are always allowed. External hosts require this confirmation. Active tools send real probes — only run them where it is legal.