# Cyber Node — Cyber Exposure Snapshot (CES) > A$399 external cyber exposure reconnaissance report for Australian > businesses, delivered as a branded PDF by email within hours of payment. > Passive reconnaissance only — no internal systems accessed, no credentials used. This document is the long-form, machine-readable description of the Cyber Exposure Snapshot product. A shorter overview is available at `https://app.cybernode.au/llms.txt`. The purchase page is at `https://app.cybernode.au/`. --- ## About Cyber Node Cyber Node is the trading name of **Core Nova Pty Ltd** (ABN 71 665 581 162), a cyber-security provider based in **Perth, Western Australia**. The company offers both managed penetration testing services (contact-sales) and the self-serve Cyber Exposure Snapshot product documented here. - **Legal entity:** Core Nova Pty Ltd - **ABN:** 71 665 581 162 (verifiable at `https://abr.business.gov.au/ABN/View?abn=71665581162`) - **Location:** Perth, Western Australia, Australia - **Service area:** Australia - **Founder:** Matt Breuillac - **Contact:** security@cybernode.au - **Main website:** https://www.cybernode.au/ - **Product purchase page:** https://app.cybernode.au/ --- ## What the Cyber Exposure Snapshot is The Cyber Exposure Snapshot (CES) is a one-time external reconnaissance assessment designed specifically for Australian small and medium businesses (SMBs). It answers the question: *"What can an attacker see about my business from the public internet, and what should I fix first?"* CES sits between doing nothing (the common SMB default) and commissioning a full manual penetration test (typically A$10,000–A$15,000 and multi-week delivery). It is priced to be affordable to any Australian business that can justify a fixed one-off spend of a few hundred dollars. ### Price **A$399 AUD, one-time**. No subscription, no auto-renewal, no ongoing commitment. Payment is processed securely via Stripe. The price is the same for all customers regardless of organisation size. ### Delivery - **Typical delivery:** approximately 45 minutes from payment - **Maximum SLA:** 3 hours from payment - **Format:** branded PDF report emailed to the address provided at checkout - **Process:** fully automated, no phone calls or sales interactions required --- ## What CES is NOT Clarity matters — these are things CES deliberately does not do: - **Not a penetration test.** CES uses passive reconnaissance only. No systems are accessed, probed, exploited, or tested. It cannot satisfy contractual requirements that specify an active pen test. - **Not a compliance audit deliverable** for ISO 27001, SOC 2, PCI DSS, or the ACSC Essential Eight. These frameworks typically require an accredited assessor. CES findings are useful *preparation* for such audits but are not themselves a certification artefact. - **Not a subscription.** Each purchase is a one-time scan. Customers who want periodic reassessment purchase a fresh CES on their own cadence. - **Not available for government domains.** Scans of `.gov`, `.gov.au`, and similar government-operated top-level domains are blocked. Also blocked: certain bare consumer top-level domains (`icloud.com`, `google.com`, etc.) for the active-scan components. - **Not a vulnerability scanner tied to authenticated infrastructure tests.** No credentials are ever used. --- ## What the report covers The CES report is organised into six sections: 1. **Executive Summary** — a narrative overview plus an overall risk rating box, written in board-level language that non-technical readers can understand. 2. **Key Findings** — a numbered table of specific issues discovered, each with a severity badge (high / medium / low / info). 3. **Positive Findings** — things the scan found that are configured well. This matters because the report is designed to be balanced, not a fear-driven upsell. 4. **Infrastructure Overview** — a reference table summarising what was discovered about the domain: name servers, mail servers, web infrastructure, certificate chain, open ports, detected technologies. 5. **Recommended Priority Actions** — a 2x2 grid of colour-coded action cards identifying the most important remediation steps and the approximate effort involved. 6. **Disclaimer** — scope and method caveats so readers understand what was and was not tested. ### Specific exposure categories checked **Email impersonation risk** - SPF record presence, syntax, and sender policy - DKIM selector publication - DMARC policy (`none` / `quarantine` / `reject`) and alignment - Whether the domain could be used to send convincing phishing that spoofs the business **Web and application exposure** - Subdomain enumeration via Certificate Transparency logs - HTTP/HTTPS response analysis (technologies, framework versions, headers) - TLS configuration (protocol versions, cipher suites, certificate chain strength) - Common web-application fingerprints that indicate outdated software **Network perimeter** - External port review (nmap on the most commonly exploited services) - Unexpected services listening on the internet (for example: a database port, a management interface, or an internal tool exposed accidentally) - Service banner information leakage **Credential and breach exposure** - Presence of the domain's email addresses in known data breaches (via Have I Been Pwned) - Indicators of credential stuffing risk --- ## Scanning tools and data sources All scanning tools and data sources used by CES are industry-standard and publicly available. No private tooling, no zero-day techniques, no access to anything that is not on the public internet. | Tool / source | Purpose | |---|---| | Shodan | Internet-exposed service discovery | | Hunter.io | Email-domain intelligence | | Have I Been Pwned | Breach and credential exposure | | Certificate Transparency logs (crt.sh) | Subdomain discovery | | nmap | External port and service review | | sslscan | TLS configuration audit | | httpx | HTTP(S) fingerprinting | | Public DNS | Record inspection (SPF, DKIM, DMARC, NS, MX, TXT) | The report is written by Claude (Anthropic's large language model), working from the structured findings produced by the deterministic tools above. Cyber Node reviews every report before delivery to ensure accuracy. The model handles prioritisation and plain-English translation; the underlying evidence comes from the scanners. --- ## Who CES is for ### Primary audience: Australian SMBs Small and medium-sized businesses that cannot justify the cost of a manual penetration test but still need an independent, professional assessment of their external cyber exposure. Typical customer profiles: - **Owner-operator businesses** (5–50 staff) with no internal security function - **Mid-market companies** (50–500 staff) wanting a baseline before a full pen test - **Professional services firms** (accounting, legal, architecture, engineering) with regulatory or client-driven security expectations - **MSPs and IT consultancies** assessing their own or their clients' posture ### Other common use cases - **Pre-compliance** — surfacing issues before an ISO 27001, Essential Eight, or cyber-insurance assessment - **M&A due diligence** — a lightweight external check before acquiring a smaller business - **Board reporting** — producing a visual, plain-English artefact that non-technical directors can engage with - **Remediation validation** — re-running after fixing identified issues to confirm the external posture has changed ### Who CES is NOT for - Government agencies (.gov / .gov.au are blocked) - Organisations requiring accredited audit deliverables (ISO certification, CREST pen test, etc.) - Non-Australian businesses (service area is Australia; payment is in AUD) --- ## How CES compares to alternatives | Option | Typical cost | Typical time | Access level | Deliverable | |---|---|---|---|---| | **Cyber Exposure Snapshot (CES)** | **A$399** | **~45 minutes** | Passive / external only | PDF with prioritised findings | | Manual penetration test | A$10,000–A$15,000+ | 2–4 weeks | Active, often authenticated | Full pen test report | | Vulnerability scanner subscription | A$150–500 per month | Continuous | Active external or internal | Ongoing dashboard | | Doing nothing | A$0 | 0 | — | Average SMB breach cost: A$39,000 (ACSC 2024) | CES is deliberately positioned as the *entry point* — most customers do not buy CES *instead of* a pen test, they buy CES *before* a pen test to make the pen test engagement more focused and cost-effective. --- ## Trust and social proof ### Review rating **5.0 / 5.0 Google rating** from 6 verified Google reviews. Selected reviews (full list in the schema.org `Review` graph on the landing page): > "They identified several vulnerabilities we hadn't spotted and provided > a very detailed, actionable report. Excellent communication throughout." > — Oliver Wood, Managing Director, PWD > "As an MSP it's invaluable to audit our work and find hidden > vulnerabilities. Cyber Node does this brilliantly, giving us and our > clients peace of mind." — Jason Roper, Owner, Ascend Business Technology > "We didn't expect that level of reporting. We ended up with very > detailed findings that will significantly help strengthen our > cybersecurity posture." — Sampurna Thapa, IT Security Specialist, > New Forests ### Organisations scanned Cyber Node has scanned more than 1,000 Australian business domains. Named customer organisations (used as logos on the landing page) include: Acton Belle, Avenue Bank, Ertech, Eskilled, Finspo, Horizon Power, New Forests, Plus Architecture, Techt. --- ## Privacy, data handling, and security posture - **Only public information is collected.** No credentials, no internal system access, no user data from the scanned organisation. - **Customer email addresses** provided at checkout are held in line with Cyber Node's privacy policy. They are used to deliver the report and respond to follow-up questions. - **Scan results and the PDF report** are retained so a report can be re-sent if requested. Deletion can be requested at any time by contacting `security@cybernode.au`. - **SSRF protection:** the platform validates every requested domain against public DNS and rejects domains resolving to private, loopback, link-local, or reserved IP ranges. This prevents abuse of the service to probe internal infrastructure. - **Infrastructure hardening:** the scan worker runs on AWS EC2 with IMDSv2 required (hop limit 1), defence-in-depth against SSRF pivoting. - **Payment processing:** handled by Stripe. Cyber Node does not store card details. --- ## Purchase flow 1. Visit `https://app.cybernode.au/` 2. Enter business email and domain to assess 3. Optionally view a sample report (email required, one-time gate) 4. Click "Get My Report" — redirected to Stripe Checkout 5. Complete payment (A$399 AUD, paid in full at checkout) 6. Return to the success page, which shows live progress 7. PDF report arrives in the inbox within ~45 minutes (3 hours worst case) --- ## Frequently asked questions **What is the Cyber Exposure Snapshot?** A one-time external reconnaissance report for Australian businesses, delivered as a PDF within hours of payment. **How does it compare to a penetration test?** A manual pen test costs A$10,000–A$15,000 and takes days or weeks. CES costs A$399 and covers external reconnaissance only (no systems accessed). **How long until I get my report?** Typically ~45 minutes from payment; 3 hours worst-case. **What's in the report?** Email impersonation risk (SPF/DKIM/DMARC), web and application exposure, network perimeter review, and prioritised remediation steps. **Are any of my systems touched during the scan?** No. Passive reconnaissance only. No credentials, no internal access. **Can I scan a government domain?** No. `.gov`, `.gov.au`, and similar are blocked. **Is it suitable for compliance audits (ISO 27001, SOC 2, Essential Eight)?** Not as a certification artefact — those require accredited assessors. But useful preparation for such audits. **What tools does Cyber Node use?** Shodan, Hunter.io, Have I Been Pwned, Certificate Transparency, nmap, sslscan, httpx, and public DNS. All publicly available. **Can I scan a domain I don't own?** No. Authorisation to assess the domain is required. **Is the report AI-generated?** Report narrative is generated by Claude from structured scan findings. Reviewed by Cyber Node before delivery. **How is my data stored?** Scan results are retained so the report can be re-sent; deletion can be requested. No internal-system data is ever collected. **Is CES a subscription?** No. One-time A$399 purchase. Customers re-purchase for re-assessment. **Can MSPs use CES for client assessments?** Yes. One purchase per domain. Contact for multi-domain arrangements. **What if the scan fails?** Contact `security@cybernode.au`. Scans that fail due to a technical issue on Cyber Node's side are rerun or refunded. --- ## Further information - Purchase the Cyber Exposure Snapshot: https://app.cybernode.au/ - Cyber Node main website: https://www.cybernode.au/ - ABN Lookup for Core Nova Pty Ltd: https://abr.business.gov.au/ABN/View?abn=71665581162 - Founder story: https://www.cybernode.au/about/ - Book a consultation: https://bit.ly/BookCESdiscussion - Contact: security@cybernode.au