How It Works
Using AttackForge is as fast, easy and effortless.


Customers can Request a New Project. Information will be provided to Admins. Admins can review and Approve/Reject the project request. Customer will receive email notification based on the outcome. If approved, customer will be invited to the newly created project.
Admins can also manually create new projects. Define what will be tested (e.g. application, infrastructure, etc.); testing methodology; test window; etc.
After you create a project, you will be redirected to the Project Dashboard. From here you can access the page menu to start working on your project.
Invite people to your project e.g. developers, pentesters, customers, security managers, project managers, etc. Your project team can also upload necessary files and information required for testing e.g. test credentials, solution documents, diagrams, etc.
Test cases help to track what was & wasn't tested. Every test case can have detailed execution flows. Add supporting notes and evidence for each test case.
You can harness the built-in vulnerability library to quickly add vulnerabilities to your project/pentest; or create custom write-ups from Vulnerability Library.
Project team, including your customers, can download automated reports in PDF, DOCX, HTML, CSV or JSON formats. They can even customise the reports in the application, or create fully-custom reports using your own style with AttackForge ReportGen.
Project team can also export vulnerabilities to JIRA, ServiceNow, Azure DevOps and more.
Last modified 8mo ago