Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
ExposureTest is a cybersecurity threat intelligence and exposure assessment service under ThreatDome. It examines externally visible corporate assets, company and executive digital footprints, data leaks, and potential attack entry points. Its core goal is to identify information and system risks already exposed on the internet and produce a personalized Exposure Report.
Based on the page content, this is essentially a “data exposure vulnerability scan + human expert analysis” assessment service, rather than a traditional firewall or endpoint protection product. The assessment covers eight areas: account takeover risk, namely leaked credential analysis; domain analysis; attack surface analysis; dark web and media exposure; adversary activity; federated search assessment; file exploration; and operational technology (OT) risk assessment. After automated intelligence discovery, human expert analysts verify the findings and add context. The report uses a 1–10 score to indicate the severity of individual vulnerabilities and overall risk, and provides technical remediation recommendations. Its scoring methodology is based on ThreatDome IVSS, with reference to CVSS and IBM’s Cost of a Data Breach Report.
The service has a low barrier to entry: the page states that only the customer’s domain name and authorization are required. After initial data collection, analysts aggregate and interpret the data, the system generates a report, and it is delivered by email within 2 business days after purchase. This model is suitable for a quick baseline assessment, but the page does not disclose whether there is a SaaS console, continuous monitoring, real-time alerts, API access, SIEM integration, or ticketing system integration. As a result, there is limited information about how it supports a closed-loop security operations workflow.
The captured content does not provide packages, one-time assessment pricing, subscription models, or payment methods. It also does not specify compliance certifications, data storage locations, or privacy handling procedures. For government agencies, critical infrastructure operators, and data-sensitive enterprises, it is important to further confirm contract terms, NDAs, data processing boundaries, and local compliance requirements before procurement.
Its strengths are broad coverage, including credentials, dark web exposure, domains, external attack surface, and OT risk, as well as human review. The report also includes scoring and mitigation recommendations. Its limitations are limited transparency and a lack of detail on continuous monitoring, alerts, and integration capabilities. It is better suited to mid-to-large enterprises, critical infrastructure organizations, and government customers that need a one-time external exposure assessment and want an expert report. If an organization needs continuous asset discovery, vulnerability remediation workflows, and SOC integration, it should be used alongside ASM, SIEM, or vulnerability management platforms.
The page does not state whether it is accessible from mainland China, supports local payment methods, or offers Chinese-language support, so china_access can only be marked as unknown. Domestic users should first test website reachability and email deliverability, and confirm cross-border data compliance. Alternative or complementary options include SecurityScorecard, BitSight, Recorded Future, Censys ASM, Shodan Enterprise, as well as attack surface management and exposure assessment services from Chinese security vendors.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on exposuretest.com official site.
exposuretest.com is an United States Security provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach exposuretest.com directly.