/* Features F1–F3, What-we-detect D1–D2, How-it-works W1–W3 */ /* ───────── F1 · Feature grid — icon cards, 2×3 ───────── */ const F1 = () => { const items = [ [I.layers, 'Attack surface inventory', 'Subdomains, live hosts, open ports, services, and endpoints — discovered automatically and kept in one searchable inventory.'], [I.target, 'Real exploit modules', '30+ active checks: XSS, SQLi, SSRF, IDOR, auth bypass, takeover, secrets, and CVE matching against live service versions.'], [I.file, 'Evidence-first findings', 'Every result ships with the request, response, and reproduction step — not a generic "possible" flag you have to chase.'], [I.gauge, 'Risk-ranked, not noise', 'CVSS + EPSS + exploitability fold into one priority so the 10.0 on your edge sorts above 300 informational TLS notes.'], [I.activity, 'Continuous monitoring', 'Re-scan on a schedule. Get diffed alerts the moment a new port opens, a cert expires, or a fresh CVE hits your stack.'], [I.file, 'One-click reporting', 'Export client-ready PDF or push to Jira, Slack, and webhooks. Same evidence, three audiences, zero re-formatting.'], ]; return (
Platform

Everything from discovery to proof

One workflow — scan, inspect, compare, export — without the interface turning into a lab bench.

{items.map(([icon, title, body]) => (
{icon}

{title}

{body}

))}
); }; /* ───────── F2 · Alternating feature rows with mock visual ───────── */ const FeatureRow = ({ flip, eyebrow, title, body, bullets, visual }) => (
{eyebrow}

{title}

{body}

{bullets.map(b => (
{I.check}{b}
))}
{visual}
); const F2 = () => (
} />
EVIDENCE · CVE-2024-3094
{`$ apt-cache policy liblzma5
  Installed: 5.6.1-1
`}✗ MATCH — in known-bad range{`
$ readelf -s sshd | grep RSA_
`}✗ IFUNC hook present
} /> ); /* ───────── F3 · Bento grid ───────── */ const F3 = () => (
Why ThirdEyeScan

Signal density other scanners can't match

{I.gauge}
94%

Less noise to triage

Exploitability scoring collapses thousands of raw flags into the handful that actually matter this week.

{[ [I.bolt, 'Active exploitation', '30+ modules safely confirm findings instead of guessing from a banner.'], [I.clock, 'Minutes, not days', 'A full scan across 1,200 assets finishes in ~14 minutes.'], [I.network, 'Surface diffing', 'Every re-scan diffs against the last so new exposure surfaces instantly.'], [I.file, 'Audit-ready output', 'Export evidence packs your auditors and clients accept as-is.'], ].map(([icon, title, body]) => (
{icon}

{title}

{body}

))}
); /* ───────── D1 · What we detect — module matrix ───────── */ const D1 = () => { const mods = [ [I.globe, 'Subdomain enumeration', 'CT logs + DNS'], [I.server, 'Live host discovery', 'ICMP / TCP'], [I.target, 'Port & service scan', 'top 1000 + full'], [I.eye, 'Service fingerprint', 'version detection'], [I.lock, 'Exposed panels', 'admin / login'], [I.bug, 'CVE matching', 'NVD + EPSS'], [I.shield, 'Security misconfig', 'headers / CORS'], [I.file, 'Sensitive files', '.git / .env / bak'], [I.network, 'Subdomain takeover', 'dangling CNAME'], [I.bolt, 'XSS · SQLi · SSRF', 'web exploit set'], [I.lock, 'Auth bypass', 'default creds'], [I.shieldCheck, 'TLS / SSL review', 'cipher + expiry'], ]; return (
What we detect

30+ modules across the whole kill chain

From the first DNS lookup to a confirmed RCE — every stage runs in one pipeline.

{mods.map(([icon, name, sub]) => (
{icon}
{name}
{sub}
))}
+ 18 more attack modules in the Recon engine
); }; /* ───────── D2 · Severity-led detection callout ───────── */ const D2 = () => (
Ranked by real risk

Not all findings are emergencies

ThirdEyeScan folds CVSS base score, EPSS exploit probability, and asset exposure into a single priority — so your one critical never drowns under 300 low-severity TLS notes.

{[['CRITICAL','12','P1 — exploit available, public asset',L.crit,'94% EPSS'], ['HIGH','47','P2 — high impact, needs validation',L.high,'61% EPSS'], ['MEDIUM','184','P3 — hardening & config',L.med,'12% EPSS'], ['LOW','312','P4 — informational',L.low,'—']].map(([sev,n,desc,c,epss])=>(
{n} {sev} {desc} {epss}
))}
); /* ───────── W1 · How it works — 3 numbered steps ───────── */ const W1 = () => { const steps = [ ['01', 'Add a target', 'Point ThirdEyeScan at a domain or IP range. No agents, no DNS changes, no install — scanning starts in seconds.', I.plus], ['02', 'Run the pipeline', 'The pipeline enumerates the surface, fingerprints services, and runs every detection module — live, with a streaming event log.', I.scan], ['03', 'Triage & report', 'Review ranked findings with full evidence, mark status, and export a client-ready report or push to your tools.', I.file], ]; return (
How it works

From domain to evidence in three steps

{steps.map(([num, title, body, icon], i) => (
{num} {icon}

{title}

{body}

))}
); }; /* ───────── W2 · Horizontal timeline ───────── */ const W2 = () => { const steps = [ ['Discover', 'Surface mapping', L.low], ['Fingerprint', 'Service & version ID', L.med], ['Exploit', 'Active module run', L.high], ['Confirm', 'Evidence capture', L.crit], ['Report', 'Rank & export', L.ok], ]; return (
The scan pipeline

Every scan walks the same disciplined path

{steps.map(([title, sub, c], i) => (
{i < steps.length - 1 &&
}
{`STAGE ${i+1}`}
{title}
{sub}
))}
); }; /* ───────── W3 · Split — copy + code terminal ───────── */ const W3 = () => (
Built for operators

CLI or dashboard — same engine

Kick off scans from the terminal, wire them into CI, or drive everything from the dashboard. Results land in the same place, ranked the same way.

{['Scriptable scans for CI/CD gates', 'Webhook + Slack + Jira delivery', 'Scheduled re-scans with diff alerts'].map(b => (
{I.check}{b}
))} 
$ scan target.com --json{'\n'}
[14:08:02] recon     73 hosts · 65 ports{'\n'}
[14:11:18] panels    default creds → jenkins{'\n'}
[14:21:54] cve       CVE-2024-3094 · 4 hosts{'\n'}
[14:22:08] done      644 findings · report 7f4a{'\n'}
 exported results.json
); Object.assign(window, { F1, F2, F3, D1, D2, W1, W2, W3 });