We have created a new way to manage your security and penetration testing projects and programs.
Our pentesting collaboration and vulnerability management platform - AttackForge - will save you time, effort and money - whilst making your next security and penetration testing project easier, safer and faster!
We also provide scalable, effective and quality controlled penetration testing and governance, risk & compliance services to our clients and business partners around the world.
Pentester |
Business |
Enterprise |
|
|---|---|---|---|
|
COST SAVINGS Reduce project overheads and costs by up to 40% |
|||
|
VISIBILITY See all vulnerabilities across organisation / portfolio / clientbase |
|||
|
TRANSPARENCY Know what was (and was not) tested - every time |
|||
|
CONSISTENCY Standard vulnerability terminology and language |
|||
|
CLARITY Detailed information for every vulnerability |
|||
|
TRACEABILITY Know what is fixed and not fixed |
|||
|
DEPTH Search all your systems to find their vulnerabilities & status |
|||
|
COLLABORATION Access your workspace / calander / Slack / JIRA |
|||
|
CONSOLIDATION All your vulnerabilites and projects securely in one place |
|||
|
SIMPLICITY Dashboards and tools to help you |
|||
|
ANALYTICS Deep discovery - most common vulnerabilities / trends over time |
|||
|
SECURITY Mandatory MFA, Encryption, others - you're in good hands |
PentestersBusinessEnterprise |
|---|
|
COST SAVINGS Reduce project overheads and costs by up to 40% |
|
VISIBILITY See all vulnerabilities across organisation / portfolio / clientbase |
|
TRANSPARENCY Know what was (and was not) tested - every time |
|
CONSISTENCY Standard vulnerability terminology and language |
|
CLARITY Detailed information for every vulnerability |
|
TRACEABILITY Know what is fixed and not fixed |
|
DEPTH Search all your systems to find their vulnerabilities & status |
|
COLLABORATION Access your workspace / calander / Slack / JIRA |
|
CONSOLIDATION All your vulnerabilites and projects securely in one place |
|
SIMPLICITY Dashboards and tools to help you |
|
ANALYTICS Deep discovery - most common vulnerabilities / trends over time |
|
SECURITY Mandatory MFA, Encryption, others - you're in good hands |
AttackForge.com is a free-to-use community tool & collaboration platform for pentesters and business to help you manage your own security testing projects and related activities.
AttackForge.com was built initially to help pentesters reduce the amount of time they spent doing things other than pentesting. It’s the first dedicated collaboration platform for pentesting – unlike other similar projects which focus on aggregation of scanning output or report generation only.
Attackforge.com can significantly increase actual time spent testing. It helps pentesters quickly create projects and give access to the business so they can upload all necessary details & artefacts. It has an integrated issue library which has over 1300 vulnerability definitions from CWE and CAPEC, meaning it takes on average less than 30 seconds to add an issue, and all reporting is on-demand and automated so no need to manually create reports. The business can also have direct access to the project, so they no longer need to chase pentester for updates or reports – they can see findings immediately, download reports and import vulnerabilities directly into own JIRA Cloud project.
AttackForge.com has other collaboration tools as well to make everyone’s lives easier – for pentesters and the business. This includes email notifications on start/stop testing daily; Slack integration for private communication; calendar to schedule and plan upcoming projects; remediation tracking for all vulnerabilities; and analytics to provide more insight across range of pentests.
AttackForge.com also integrates best practice testing benchmarks from OWASP ASVS, OWASP MASVS, OSSTMM & others which helps business understand what pentester is actually testing and helps pentester structure their testing. Pentesters can also create their own test suites for specific clients or projects.
AttackForge.com will reduce pressure on pentesters and help make communication, collaboration, transparency and reporting much easier, and also reduce some of the overheads wasted on trivial tasks which all are part of a pentest project.
Ready-to-use & Free - to help you
Free |
Pro |
Enterprise |
|
|---|---|---|---|
| Vulnerabilities | |||
| View by Project, Asset, Priority and Status | |||
| Analytics | |||
| Attack Chains | |||
| Import Into Your JIRA | |||
| Detailed Vulnerability Info & Evidence | |||
| Remediation Tracking | |||
| Manage Vulnerability Library | |||
| Share Vulnerability Library with Team | |||
| Projects | |||
| Create & Manage Projects | (Limit of 3) | ||
| Scheduling & Calendar | |||
| Project Summary & Dashboards | |||
| Team Profiles & Collaboration | |||
| Slack Integration | |||
| Secure Workspace For File Uploads | (Limited Storage) | ||
| View & Action Test Cases | |||
| Manage Test Suites & Methodologies | |||
| Share Test Suites & Methodologies with Team | |||
| Storage For Testing Logs | (Limited Storage) | ||
| User Access Management | |||
| Reporting | |||
| Automated & On-Demand Reporting | |||
| Executive Reports (PDF & DOCX) | |||
| Detailed Vulnerability Reports (PDF, DOCX & CSV) | |||
| Rebrand DOCX For Your Own Needs | |||
| Security | |||
| Hosted in Azure / AWS | |||
| Dedicated Infrastructure For Your Organisation | |||
| Mandatory Multi-Factor Authentication (Mobile / Email) | |||
| IP-Whitelisting & Network Access Controls | |||
| Enterprise User Management | |||
| Encrypted Communications & Storage | |||
| Enterprise | |||
| Clients / Stakeholders Request New Projects | |||
| Admins Approve / Reject New Projects | |||
| Custom Domain, Logo & Colours | |||
| You Own The Data | |||
| API for Custom Integrations | |||
| ADFS Integration | |||
| Custom Reports | |||
| Custom Dashboards | |||
| Custom Analytics | |||
| Custom Workflows | |||
| Integrate Into Your Own Slack Workspace | |||
| Administrative Management | |||
| Phone Support | |||
| Email Support | |||
| On-Site Support |
Free |
|---|
| Vulnerabilities |
| View by Project, Asset, Priority and Status |
| Attack Chains |
| Import Into Your JIRA |
| Detailed Vulnerability Info & Evidence |
| Remediation Tracking |
| Manage Vulnerability Library |
| Projects |
| Create up to 3 Projects |
| Scheduling & Calendar |
| Project Summary & Dashboards |
| Team Profiles & Collaboration |
| Slack Integration |
| Secure Workspace For File Uploads |
| View & Action Test Cases |
| Storage For Testing Logs |
| User Access Management |
| Reporting |
| Automated & On-Demand Reporting |
| Executive Reports (PDF & DOCX) |
| Detailed Vulnerability Reports (PDF, DOCX & CSV) |
| Rebrand DOCX For Your Own Needs |
| Security |
| Hosted in Azure / AWS |
| Mandatory Multi-Factor Authentication (Mobile / Email) |
| Encrypted Communications & Storage |
| Enterprise |
| Email Support |
Pro |
|---|
| Vulnerabilities |
| Access Powerful Analytics |
| Share Vulnerability Library with Team |
| Projects |
| Create Unlimited Projects |
| Unlimited Project Scope / Assets |
| Invite Unlimited Persons To Your Projects |
| Manage Test Suites & Methodologies |
| Share Test Suites & Methodologies with Team |
| Unlimited Uploads |
| Enterprise |
| Priority Email Support |
Enterprise |
|---|
| Projects |
| Clients / Stakeholders Request New Projects |
| Admins Approve / Reject New Projects |
| Security |
| Dedicated Infrastructure For Your Organisation |
| IP-Whitelisting & Network Access Controls |
| Enterprise User Management |
| Enterprise |
| Custom Domain, Logo & Colours |
| You Own The Data |
| API for Custom Integrations |
| ADFS and LDAP Integration |
| Custom Reports |
| Custom Dashboards |
| Custom Analytics |
| Custom Workflows |
| Administrative Management |
| Integrate into Your Own Slack Workspace |
| Phone Support |
| Email Support |
| On-Site Support |
We can help by providing you with our streamlined engagement process which is minimal fuss and usually means a proposal can be delivered same business day, with ability to commence security testing usually within 2-3 business days.
We provide an industry-wide resourcing approach allowing greater scalability when determining your resourcing needs.
We engage security professionals across the industry allowing for greater flexibility and accuracy when determining the right resource for your project.
Cyber Security Hub charge a nominal fee on top of the contractor’s daily rate allowing for flexible pricing options to cater for all budgets.
Cyber Security Hub provides strict identity management, access control, security of clients' information platform and traceability of the actions performed by security specialists.
The Cyber Security Hub platform is first of its kind and provides significant benefits when managing few, or many, security projects.
We can provide you the ability to work on projects with security professionals in the industry who can share knowledge and provide you with an opportunity to up skill and learn new tricks and techniques.
As Cyber Security Hub engages all major industries, this allows you to broaden your skills and work experience in ways you cannot through traditional channels.
All projects are conducted through a simple statement of work. That’s it. You also receive healthy income for your efforts.
