External vulnerability scanning assesses your internet-facing infrastructure for known vulnerabilities that an attacker, who doesn’t have access to your organization’s private networks, could exploit.
On the flip side, internal vulnerability scanning is concerned with finding weaknesses in your internal endpoints, which are typically hidden behind a firewall and only accessible by your employees or trusted partners.
Learn more about the differences between internal vs external vulnerability scanning.