Harden.Tools
ES Get Started
security VERSION 4.2.0-STABLE
Built by Harden.Tools

Fortaleza

Continuous Attack Surface Validation. Infrastructure-native scanning for the modern operator.

Start Free Trial open_in_new Documentation open_in_new
fortaleza@root: ~ /validation-stream
[INIT] Initializing Fortaleza Validator...
[SCAN] Crawling AS20473... Found 142 endpoints.
[AUTH] Authenticated via mTLS. Handshake: TLS_AES_256_GCM_SHA384
[WARN] Found Weak Cipher on api.prd.v4: SHA-1 detected.
[SEC] SPF/DKIM validation passing for harden.tools
_
Technical Capabilities

7 Scanners in Parallel

Passive and non-destructive scanning. Results in ~30-60 seconds per domain.

http

HTTP Headers

HSTS, CSP, COEP/COOP/CORP, cookie security

lock

SSL/TLS

Grade A+→F, certificate chain, CAA, HSTS preload

router

Open Ports

nmap top 100, exposed service detection

folder_open

Tech & Sensitive Files

Exposed stack, .env, .git, backup.sql detection

dns

DNS Reputation

Blacklists, Google Safe Browsing, reputation scoring

security

HaveIBeenPwned

Domain data breaches, recency and impact scoring

mail_lock

Email Security #1

SPF / DKIM / DMARC / MTA-STS / BIMI — #1 gap vs competition

Multi-Framework Compliance

4 Security Frameworks

Automated compliance verification across frameworks in a single scan.

LFPDPPP

Mexico Only

Ley Federal de Protección de Datos Personales. The only automated verifier for Mexican data privacy law.

OWASP Top 10

The 10 most critical web application security risks, automatically verified.

ISO 27001

Technical controls from the international information security management standard.

PCI DSS

Security standard for organizations that process payment card data.

Observability Dashboard

Observability Dashboard

Real-time exposure metrics and infrastructure health clusters.

GLOBAL RISK SCORE

842
trending_up +12.4% SECURE

TOPOLOGY EXPOSURE MAP

REGION: GLOBAL-ANYCAST
NODE_CLUSTER_Z-01

SSL/TLS HEALTH

99.2%
82 Valid / 1 Warning

EMAIL HYGIENE

SECURE
SPF: PASS | DMARC: REJECT

CVE QUEUE

03
CRITICAL: 0 | HIGH: 3

UPTIME (P99)

99.99%
GLOBAL RESOLVE: 12ms

01. Cryptographic Validation

Full-stack SSL/TLS analysis including cipher suite hardening verification, certificate chain transparency, and automated expiry rotation checks.

  • check_circle Perfect Forward Secrecy Audit
  • check_circle HSTS Configuration Check
  • check_circle OCSP Stapling Verification
REPORT: HTTPS://API.HARDEN.TOOLS
Protocol TLS 1.3
Cipher ChaCha20-Poly1305
Expiry 82 Days Remaining
DMARC v=DMARC1; p=reject;

VULNERABILITY LIFECYCLE

BACKLOG 4
CRITICAL
Exposed SSH Port
ID: CVE-2024-001
HIGH
CORS Policy Gap
ID: CVE-2024-002
REMEDIATING 1
INFO
Subdomain Scan
ID: INTEL-004
VERIFIED 12

02. AI-Assisted Remediation

Fortaleza generates context-aware CLI snippets to patch detected exposures instantly using your specific infrastructure provider tools.

Powered by Anthropic Claude

content_copy
auto_awesome AI-PATCH-SUGGESTION
# Patching SSH exposure (AWS)
aws ec2 revoke-security-group-ingress \
  --group-id sg-0492e \
  --protocol tcp \
  --port 22 \
  --cidr 0.0.0.0/0
hub INFRASTRUCTURE EXPOSURE MAP
SYSTEMS: 1,402 DETECTED
SCANNING: AS-882-PRD
NODE DETECTED
IP: 192.168.1.104
PORTS: [80, 443, 22]
VULN: SSH_VER_EXPIRED

Secure Your Perimeter.

Stop guessing your attack surface. Fortaleza provides the ground-truth observability needed for modern compliance and security standards. 14-day trial, no card required.

START FREE SCAN open_in_new VIEW PLANS open_in_new

14-day trial · No credit card · Passive and non-destructive