Results Dashboard
The Results Dashboard shows all the reconnaissance data discovered for a specific domain. This is where you explore your attack surface — every subdomain, live host, IP address, and passive intelligence source that Ryft has found.
Accessing the Results Dashboard
From the Domains page, click View Results next to any domain. You can also navigate here from the sidebar by expanding a domain's sub-navigation.
Overview
At the top of the page, you'll see the domain name and a back button to return to the Domains list. Below that, the page is organized into collapsible data tables, each representing a different type of reconnaissance data.
Data Tables
Subdomains
This table lists all subdomains discovered for your domain. Ryft finds subdomains using a combination of active and passive techniques (see How Scanning Works for details):
Active discovery — Ryft actively queries multiple DNS and certificate transparency data sources
Passive sources — Threat intelligence feeds, certificate transparency logs, and WHOIS correlation provide additional subdomain data without directly touching your targets
Each row shows:
The subdomain name
The scan that discovered it
When it was first seen
You can search subdomains by name and sort them by discovery date or alphabetically.
New asset highlighting: Subdomains discovered in the most recent scan are highlighted so you can quickly spot what's new.
Live Hosts
Live hosts are subdomains that responded to HTTP/HTTPS probes. Ryft checks which subdomains are actually serving web content. Each row shows:
The URL of the live host
HTTP status code (e.g., 200, 301, 403)
Page title
IP address
The scan that discovered it
You can click on any live host to open the Asset Details Panel (see below).
Internet Exposed IPs
This table shows IP addresses and services discovered through internet-wide service indexing. Each row includes:
IP address
Open ports and services
Organization/ISP information
When it was last seen
This data helps you understand what services are publicly visible on the internet for your domain.
Virtual Hosts (VHosts)
Virtual host discovery identifies additional websites hosted on the same IP addresses as your domain. This can reveal related applications or services that share infrastructure.
Open Ports
Results from port scanning show which network ports are open on your assets. Each entry includes:
IP address or hostname
Port number
Service name (e.g., HTTP, SSH, MySQL)
Service version information
URL Discovery
Ryft collects known URLs from various sources including web archives and public crawl databases. This reveals:
Historical URLs that may still be accessible
API endpoints
File paths and parameters
Potentially forgotten or legacy pages
Results are paginated and can be searched and filtered.
Passive OSINT
This section aggregates data from passive open-source intelligence sources:
Threat intelligence — Associated domains, URLs, and threat data from open intelligence platforms
Certificate transparency — SSL certificate log entries showing certificates issued for your domain
WHOIS correlation — Domains registered with similar registration information
Directory Discovery Results
Directory and file brute-forcing results. Each entry shows:
The discovered path
HTTP status code
Response size
Content type
Exporting Results
Each data table has an export menu (three-dot icon ⋮) in its header. Click it to export that table's data in one of two formats:
Export JSON — Downloads the data as a structured JSON file, useful for programmatic processing or importing into other tools
Export TXT — Downloads the data as a plain text file with one entry per line, useful for quick reference or feeding into other command-line tools
These export buttons are available on every data table (Subdomains, Live Hosts, Internet Exposed IPs, VHosts, Open Ports, URL Discovery, Passive OSINT, and Directory Discovery).
Managing Assets
You can also manage assets directly from this page:
Add Assets — Manually add subdomains or hosts that you know about but Ryft hasn't discovered yet
Delete Assets — Remove individual subdomains or hosts from your inventory (toggle edit mode to enable the delete buttons)
Asset Details Panel
Open the Asset Details Panel
Click on any live host to open a slide-out panel with detailed information:
Technology fingerprinting — Detected web technologies, frameworks, and server software
HTTP response details — Headers, status codes, and response information
Associated vulnerabilities — Any findings linked to this specific asset (click to go to the Vulnerability Dashboard)
Screenshot — A visual capture of the web page (when available)
Understanding New vs. Known Assets
Ryft highlights newly discovered assets from the most recent scan. This makes it easy to spot changes in your attack surface — new subdomains, new live hosts, or new services that appeared since your last scan. You can also visualize these relationships on the ASM Map.
Last updated