Language Revision - Documentation Home Page: About Crossfeed

[dmfezzareed]

💡 Summary

https://docs.crossfeed.cyber.dhs.gov/

At the very least, the last sentence needs to be removed:

About Crossfeed
Crossfeed is a tool that continuously enumerates and monitors an organization’s public-facing attack surface in order to discover assets and flag potential security flaws. By operating in either passive or active scanning modes, Crossfeed collects data from a variety of open source tools and data feeds to provide actionable information about organization assets. Crossfeed is offered as a self-service portal and allows customers to view reports and customize scans performed.

Or, given the opportunity, it could be rewritten as follows:

CROSSFEED VISION
The Crossfeed concept involves collecting data from various tools such as commercial, open-source products, publicly available resources, and API data feeds. Crossfeed is an evolution of how CISA enables scalable, shared situational awareness of partner attack surfaces by providing a more comprehensive picture of an organization’s internet-accessible exposures and a snapshot of their assets from an external attacker’s perspective. Crossfeed empowers organizations to make better-informed, risk management decisions while providing CISA with greater insight on vulnerabilities in public-facing assets supporting national critical functions, a key enabler to CISA’s mission to understand, manage, and reduce risk to our cyber and physical infrastructure.

OBJECTIVES
• Maintain enterprise awareness of their internet-accessible systems,
• Provide insight and visibility into how internet-accessible systems and infrastructure appear to potential attackers,
• Drive proactive guidance for mitigation of vulnerabilities and reducing risk.

[dmfezzareed]

@schmelz21