Attack Surface Management
ASM is the continuous process of discovering, inventorying, and reducing all the points where an attacker could try to get into an organization, including servers, cloud assets, applications, and exposed services. The core idea is that you cannot defend what you do not know you have, and forgotten or unmanaged assets are a favorite entry point for attackers. Mature programs continuously monitor the attack surface as it changes rather than relying on occasional audits.