AttackForge
Search
K

How It Works

Using AttackForge is as fast, easy and effortless.

1. Request A New Project / Create New Project

Customers can Request a New Project. Information will be provided to Admins. Admins can review and Approve/Reject the project request. Customer will receive email notification based on the outcome. If approved, customer will be invited to the newly created project.
Admins can also manually create new projects. Define what will be tested (e.g. application, infrastructure, etc.); testing methodology; test window; etc.
After you create a project, you will be redirected to the Project Dashboard. From here you can access the page menu to start working on your project.

2. Invite Project Team

Invite people to your project e.g. developers, pentesters, customers, security managers, project managers, etc. Your project team can also upload necessary files and information required for testing e.g. test credentials, solution documents, diagrams, etc.

3. Start Working Through Test Cases

Test cases help to track what was & wasn't tested. Every test case can have detailed execution flows. Add supporting notes and evidence for each test case.

4. Add Vulnerabilities

You can harness the built-in vulnerability library to quickly add vulnerabilities to your project/pentest; or create custom write-ups from Vulnerability Library.

5. Generate On-Demand Reports & Export Findings into Tickets

Project team, including your customers, can download automated reports in PDF, DOCX, HTML, CSV or JSON formats. They can even customise the reports in the application, or create fully-custom reports using your own style with AttackForge ReportGen.
Project team can also export vulnerabilities to JIRA, ServiceNow, Azure DevOps and more.