What is KMayer Exposure Lens AI?
KMayer Exposure Lens AI is a unified cyber exposure platform that discovers external assets, maps relationships and possible attack paths, correlates technical and business exposure, supports owner-ready security decisions, prioritizes remediation, preserves CTEM closure evidence, and monitors change over time when enabled. Public requests begin with passive evidence, while private and authorized enterprise depth require verified ownership and approved scope.
Passive review
Decision support
What does the passive public evidence lane review?
The public evidence lane reviews bounded public signals such as DNS, MX, SPF, DKIM, DMARC, HTTPS, TLS, visible headers, certificates, trust files, indexing signals, and capped same-host public pages. These are supporting evidence sources inside the wider platform, not the boundary of KMayer Exposure Lens AI.
Passive review
Decision support
What happens after I submit a domain?
KMayer Exposure Lens AI validates the domain, queues the public evidence lane, and sends the verification email first. The review runs asynchronously so the public form stays fast while the private results journey remains protected.
Private verified results
Trust journey
Why do I need to verify my email?
Verification protects the private results route and confirms that the intended recipient is the person unlocking it. It closes the trust gap between the public submission flow and the non-indexed private results page.
Private verified results
Trust journey
When do I receive the results-ready email?
The results-ready email is sent only after both verification and review completion. If the scan completes first, the ready state is preserved but the results-ready email waits until the recipient verifies. If the recipient never verifies, the results-ready email is not sent to that address.
Private verified results
Trust journey
What is included in the private results page?
The private verified results page can include the executive summary, technical highlights, risk themes, evidence-source context, vendor ecosystem mapping, passive asset inventory cues, business or trust context, recommended next steps, and KMayer follow-up options when the review qualifies for them.
Passive review
Decision support
What is the difference between the public, private, and authorized lanes?
The public evidence lane, internally identified as passive_public, uses bounded public signals first. Private verified decision intelligence protects recipient-specific evidence and owner-ready priorities. The authorized enterprise lane, internally identified as authorized_deep, can add approved read-only connector evidence, trusted exports, monitoring, history, and deeper validation only after ownership and scope are verified.
Passive review
Decision support
What is Security Decision Intelligence?
Security Decision Intelligence is the KMayer Exposure Lens AI capability that combines evidence confidence, technical exposure, possible attack-path context, business impact, ownership, recurrence, and timing into explainable owner-ready priorities without converting weak signals into certainty.
Passive review
Decision support
What can read-only connectors add?
When the reviewed tenant or domain is eligible, read-only connector evidence can confirm provider alignment, enrich inventory, improve trust and business context, and add deeper evidence around edge, identity, mail, or infrastructure posture without mutating the environment.
Read-only evidence
Confidence lift
How does connector-backed context improve confidence?
Connector-backed context helps confirm whether the public picture matches governed tenant, provider, or service evidence. That lowers the risk of misattributing ownership, dependencies, or remediation priority before a deeper follow-up begins.
Read-only evidence
Confidence lift
What happens with trusted exports or uploaded files?
Trusted exports and approved customer-provided files can deepen the review only inside the governed lane. They enter quarantine first, then move through review and approved-for-parse controls before structured trusted export intelligence is allowed to influence the results. Unsupported, unsafe, or out-of-scope files may be rejected.
Approved evidence only
Quarantine controls
What is vendor ecosystem mapping?
Vendor ecosystem mapping is the evidence-backed identification of external providers around the domain, such as DNS, CDN, mail, identity, analytics, privacy, support, status, docs, code-hosting, public asset, and reporting vendors when the available evidence supports those relationships.
Dependency visibility
Business context
Does KMayer Exposure Lens AI support ASM, EASM, CEM, CAASM context, and attack paths?
Yes. KMayer Exposure Lens AI connects Attack Surface Management, External Attack Surface Management, Cyber Exposure Management, CAASM context, asset relationships, and possible attack paths inside one governed product model. Public evidence establishes the bounded view; verified and authorized context can deepen ownership, confidence, and validation.
Passive review
Decision support
Does the tool provide a full remediation playbook?
No. The product is designed to show what matters, why it matters, and what to fix first. Environment-specific implementation sequencing, control validation, and deeper remediation detail are part of a guided KMayer follow-up instead of an open self-serve blueprint.
Remediation planning
KMayer follow-up
Why does KMayer not expose every remediation detail in the public result?
The result is intentionally packaged as a decision-ready review rather than a raw implementation workbook. It should help the right stakeholders understand what matters, why it matters, and what to fix first, while KMayer handles deeper control validation and environment-specific sequencing through guided follow-up.
Passive review
Decision support
Can KMayer help remediate the issues and preserve CTEM closure evidence?
Yes. KMayer can help validate evidence, prioritize high-impact fixes, assign accountable owners, sequence remediation, recheck change, record residual risk, preserve CTEM closure evidence, and move eligible work into ongoing monitoring or an authorized enterprise review.
Remediation planning
KMayer follow-up
Does the tool support monitoring and history?
Yes, when that workflow is enabled. The platform can compare scans, track drift, preserve history, explain meaningful changes over time, and keep ongoing alerts readable with governed operational context.
Monitoring lane
Change context
What happens if I do not verify my email?
The private results remain locked behind the verification requirement, and the results-ready email is not sent to that recipient. Verification is the gate that turns a public request into private result delivery.
Private verified results
Trust journey
How is KMayer Exposure Lens AI different from a traditional scanner?
KMayer Exposure Lens AI is not an unrestricted scanner or penetration-testing platform. It connects bounded evidence, assets, relationships, possible attack paths, confidence, business context, ownership, remediation, CTEM closure, and monitoring. The public lane stays passive, while private and authorized depth remains verified, scoped, read-only, and non-offensive.
Passive review
Decision support
Who provides KMayer Exposure Lens AI?
KMayer provides KMayer Exposure Lens AI. KMayer is the company and provider. KMayer Exposure Lens AI is the tool and service family used for passive external posture review, private verified results, and governed deeper review when eligible.
Provider identity
KMayer-owned workflow
Who owns the tool output and report format?
KMayer owns the tool interface, report layout, scoring logic, summaries, and visual presentation. Requesters remain responsible for the domains, accounts, exports, and materials they submit or authorize.
Provider identity
KMayer-owned workflow
Is KMayer Exposure Lens AI a DNS checker or an MXToolbox replacement?
No. DNS, MX, SPF, DKIM, DMARC, TLS, certificates, headers, trust files, and indexing signals are supporting evidence sources. KMayer Exposure Lens AI is a wider unified cyber exposure platform for discovery, ASM, EASM, CEM, CAASM context, attack paths, security decisions, remediation, CTEM closure, and monitoring.
Passive review
Decision support
What domains am I allowed to submit?
Submit only domains and assets you own, administer, or are authorized to assess, or use the tool for legitimate passive informational review where that use is appropriate. Do not use it to target private or local hosts, or to investigate assets you are not authorized to review.
Acceptable use
Authorization required
What is not allowed?
Do not use the tool for harassment, competitor surveillance, phishing, impersonation, unlawful monitoring, unauthorized investigation, credential collection, or any attempt to widen the workflow into intrusive testing. Do not upload files or exports you are not authorized to share.
Acceptable use
Authorization required
When does the authorized enterprise lane apply?
The authorized enterprise lane applies only when verified ownership, active engagement, approved scope, and the right approvals are in place for the reviewed domain, account, connector, or evidence source. It is not anonymous and it is not implied by every public request.
Passive review
Decision support
Are connector integrations read-only?
Yes. Connector-backed evidence is read-only and approval-based. It is used only when the reviewed tenant or domain is eligible and the connector can stay attributable, bounded, and non-mutating.
Read-only evidence
Confidence lift
Does the result guarantee that every issue was found?
No. The tool provides an evidence-backed external posture review, not a guarantee that every issue, dependency, or control gap has been discovered. Coverage depends on the evidence available, the governed workflow in use, and any approved sources that were actually eligible for that review.
Boundary condition
Use with context
Is this a legal, compliance, penetration-test, or incident-response service?
No. The output is informational and prioritization-oriented. It is not a legal opinion, a formal compliance attestation, a penetration test, or incident-response advice. KMayer can help route or support those deeper services when the engagement requires them.
Boundary condition
Use with context
How should I use the results internally?
Use the private result to align the right business and technical stakeholders on what matters first, why it matters, and what should be validated next. Treat it as an internal decision and prioritization artifact, not as a public marketing asset or unrestricted implementation blueprint.
Remediation planning
KMayer follow-up