In a substantially different way then how it is now? You can put something listening on 22, 80 and 443 and log how much stuff tries to get in.

Yes, it is substantially different. A targeted, relentless attack by a state of the art cybersecurity model is far more likely to find obscure vulnerabilities than a traditional automated attack/fuzzer. These models are so much better at finding security holes than anything we've seen before.