menlohunt
GCP External Attack Surface Management with automated chain detection
§ Workflow phase
- 01 hunt
- 02 analyze
- 03 enrich
- 04 report
- 05 instrument
Discovery. Finds what is exposed.
menlohunt is a zero-knowledge 5-phase GCP recon engine with automated attack chain detection. Targets the external attack surface of organizations running on Google Cloud, with specific focus on Menlo Security gateway leakage patterns.
What it does
- 5-phase zero-knowledge GCP recon
- Automated attack chain detection, chains low/medium findings into critical paths
- Menlo Security gateway leak detection
- Output normalized for VisorLog ingestion
§ Used in
Used in
SURVEYS · 06
§ hunt layer
Same phase
- 01
aimap
nmap for AI infrastructure
- 02
JAXEN
Stateful Go recon framework with deep TLS forensics
- 03
VisorGraph
High-performance infrastructure mapping with native gVisor sandboxing
- 04
VisorGoose
Government TLD AI discovery via CT logs, Shodan, DNS, and Ollama fingerprinting
- 05
recongraph
Seed-polymorphic recon engine with environmental contamination detection
- 06
VisorSD
Shodan exposure scanner + adversarial RAG security testing
- 07
VisorBishop
Cross-platform AI/LLM observability fingerprinter, 12 platforms, IP-direct-shadow probe