• Penetration Testing Platform
    easier | faster | safer | free!

    Cyber Security Hub®
    Connecting People. Delivering Security.®

Welcome to Cyber Security Hub



We have created a new way to manage your security and penetration testing projects and programs.
Our collaboration and vulnerability management platform will save you time, effort and money - whilst making your next security and penetration testing project easier, safer and faster!

We also provide scalable, effective and quality controlled penetration testing and governance, risk & compliance services to our clients and business partners around the world.



AISA



Platform services

Pentester

Business

Enterprise

COST SAVINGS
Reduce project overheads and costs by up to 40%
VISIBILITY
See all vulnerabilities across organisation / portfolio / clientbase
TRANSPARENCY
Know what was (and was not) tested - every time
CONSISTENCY
Standard vulnerability terminology and language
CLARITY
Detailed information for every vulnerability
TRACEABILITY
Know what is fixed and not fixed
DEPTH
Search all your systems to find their vulnerabilities & status
COLLABORATION
Access your workspace / calander / Slack / JIRA
CONSOLIDATION
All your vulnerabilites and projects securely in one place
SIMPLICITY
Dashboards and tools to help you
ANALYTICS
Deep discovery - most common vulnerabilities / trends over time
SECURITY
Mandatory MFA, Encryption, others - you're in good hands

Pentesters

Business

Enterprise


COST SAVINGS
Reduce project overheads and costs by up to 40%

VISIBILITY
See all vulnerabilities across organisation / portfolio / clientbase

TRANSPARENCY
Know what was (and was not) tested - every time

CONSISTENCY
Standard vulnerability terminology and language

CLARITY
Detailed information for every vulnerability

TRACEABILITY
Know what is fixed and not fixed

DEPTH
Search all your systems to find their vulnerabilities & status

COLLABORATION
Access your workspace / calander / Slack / JIRA

CONSOLIDATION
All your vulnerabilites and projects securely in one place

SIMPLICITY
Dashboards and tools to help you

ANALYTICS
Deep discovery - most common vulnerabilities / trends over time

SECURITY
Mandatory MFA, Encryption, others - you're in good hands

Consulting services

Penetration Testing

Vulnerability Assessment

Social Engineering

Security Training

Source Code Review

Wireless Assessment

Hardware Hacking

Governance, Risk & Compliance

attackforge

PENETRATION TESTING Made Easy


AttackForge.com is a free-to-use community tool & collaboration platform for pentesters and business to help you manage your own security testing projects and related activities.

AttackForge.com was built initially to help pentesters reduce the amount of time they spent doing things other than pentesting. It’s the first dedicated collaboration platform for pentesting – unlike other similar projects which focus on aggregation of scanning output or report generation only.

Attackforge.com can significantly increase actual time spent testing. It helps pentesters quickly create projects and give access to the business so they can upload all necessary details & artefacts. It has an integrated issue library which has over 1300 vulnerability definitions from CWE and CAPEC, meaning it takes on average less than 30 seconds to add an issue, and all reporting is on-demand and automated so no need to manually create reports. The business can also have direct access to the project, so they no longer need to chase pentester for updates or reports – they can see findings immediately, download reports and import vulnerabilities directly into own JIRA Cloud project.

AttackForge.com has other collaboration tools as well to make everyone’s lives easier – for pentesters and the business. This includes email notifications on start/stop testing daily; Slack integration for private communication; calendar to schedule and plan upcoming projects; remediation tracking for all vulnerabilities; and analytics to provide more insight across range of pentests.

AttackForge.com also integrates best practice testing benchmarks from OWASP ASVS, OWASP MASVS, OSSTMM & others which helps business understand what pentester is actually testing and helps pentester structure their testing. Pentesters can also create their own test suites for specific clients or projects.

AttackForge.com will reduce pressure on pentesters and help make communication, collaboration, transparency and reporting much easier, and also reduce some of the overheads wasted on trivial tasks which all are part of a pentest project.




Ready-to-use & Free - to help you

Create & Manage Security & Penetration Testing Projects
Calender To Schedule & Plan Testing Activities
Define What Will Be Tested, And How It Will Be Tested
Analytics For All Your Assets & Vulnerabilities
Secure Workspace To Upload Details & Files Necessary For Testing
Secure Chats And Collaboration With Your Project Team
Add Vulnerabilities To Assets, Supported By Visual Attack Chains
View And Control Testing Progress
Manage Vulnerabilities, Including Retesting & Import Into Your JIRA
Store Testing Logs
On-demand, Automated Executive & Vulnerability Reports in PDF, DOCX & CSV


BSides Melbourne

FEATURED AT BLACKHAT ARSENAL - EUROPE 2018






Enterprise Platform-as-a-Service



INTEGRATES WITH INDUSTRY COLLABORATION PRODUCTS



Slack



JIRA


Benefits for your organisation and clients



Consolidation of all vulnerabilities, testing logs, pieces of evidence, artifacts and screenshots - securely managed in one place. Easy to retrieve & track, and controlled by you.
Securely collaborate and chat. Upload/download files to your workspace, avoid need to use other insecure channels.
Automatic notifications when consultants start & stop testing daily.
Track & monitor status for all your security testing projects and vulnerabilities, in one place.
View calendar to schedule and plan testing activities.
No need for peer / technical report reviews.
No need to manually provide daily updates to stakeholders.
Manage multiple simultaneous projects more effectively & easily.
Improve value proposition for new customers – increase sales.
Easy-to-use portal to engage and collaborate with your customers.
Improve retention of existing customers – entice them to stay and maintain their data with you.
View Dashboards across all projects and vulnerabilities - understand security posture for your company, at any given time - on one screen.
See the most common vulnerabilities in your organisation – across all systems/assets.
Visual attack chains to see the attack from a hackers perspective - understand exactly what an attacker is doing at each step. Don't rely on risk-ratings only to determine your remediation plan.
Search for a given system/asset and see its related vulnerabilities and remediation status.
Track remediation for all vulnerabilities.
Detailed information for every vulnerability - ratings, descriptions, attack scenarios, recommendations, proof-of-concepts, evidence, remediation notes, and more.
JIRA integration - directly import your vulnerabilities in to your own JIRA instance.
View test case progress on a project - know what was tested, who tested it, and when they tested it, and importantly understand what was not tested.
Consistent use of vulnerability language (built on CWE, CAPEC, OWASP, and others). Provides standard/common language when discussing vulnerabilities.
Assurance of repeatable service - Measure progress over time.
Powerful Analytics for deep discovery - identify vulnerability trends across over time.
Identify your own Top 10 Vulnerabilities & Testcases Leading to Vulnerabilities.
Automatically generated executive & vulnerability reports in PDF, DOCX & CSV - customised to your organisation.
Consistent reporting - whenever you need it.
Stop spending thousands per report.
Reduce Load on Consultants - Increase consultants’ productivity on testing and delivery.
Reduce reporting effort required - No need to write lengthy reports.
We offer 'Pay-as-you-Go' as well as fixed-term contracts.
Cancel at any time.
White-labeled and personalised to suit your own organisation. Stand out from the rest of the crowd.
Single-tenant environment dedicated to your organisation.
Multi-factor authentication & Certification-ready design.
Other security features to protect your data.

Plans and Pricing


Free


AttackForge.com

- Create up to 3 projects
- One-Click Automated Reporting
(PDF / DOCX / CSV)
- JIRA & Slack integration
- Remediation Tracking
- Custom vulnerability library with preloaded 1300+ vulnerabilities
- Attack Chains
- Free Forever!

Pro


$70 AUD per month


All the benefits of Free,
plus Pro-Perks:

- Unlimited projects
- Invite unlimited persons to your projects
- Access powerful analytics
- Custom test suites & test cases
- Unlimited project scope & uploads
- Priorty support
- Cancel anytime

Enterprise


Contact us

- Dedicated infrastructure
- Your domain, logo, colours
- ADFS Integration
- Custom reports, dashboards, analytics, workflows
- Integrate into your own Slack Workpsace
- Enterprise user management
- Enterprise support

Free

Pro

Enterprise

Vulnerabilities
View by Project, Asset, Priority and Status
Analytics
Attack Chains
Import Into Your JIRA
Detailed Vulnerability Info & Evidence
Remediation Tracking
Manage Vulnerability Library
Projects
Create & Manage Projects (Limit of 3)
Scheduling & Calendar
Project Summary & Dashboards
Team Profiles & Collaboration
Slack Integration
Secure Workspace For File Uploads (Limited Storage)
View & Action Test Cases
Manage Test Suites & Methodologies
Storage For Testing Logs (Limited Storage)
User Access Management
Reporting
Automated & On-Demand Reporting
Executive Reports (PDF & DOCX)
Detailed Vulnerability Reports (PDF, DOCX & CSV)
Rebrand DOCX For Your Own Needs
Security
Hosted in Azure / AWS
Dedicated Infrastructure For Your Organisation
Mandatory Multi-Factor Authentication (Mobile / Email)
IP-Whitelisting & Network Access Controls
Enterprise User Management
Encrypted Communications & Storage
Enterprise
Clients / Stakeholders Request New Projects
Admins Approve / Reject New Projects
Custom Domain, Logo & Colours
You Own The Data
API for Custom Integrations
ADFS Integration
Custom Reports
Custom Dashboards
Custom Analytics
Custom Workflows
Integrate Into Your Own Slack Workspace
Administrative Management
Phone Support
Email Support
On-Site Support

Free

Vulnerabilities
View by Project, Asset, Priority and Status
Attack Chains
Import Into Your JIRA
Detailed Vulnerability Info & Evidence
Remediation Tracking
Manage Vulnerability Library
Projects
Create up to 3 Projects
Scheduling & Calendar
Project Summary & Dashboards
Team Profiles & Collaboration
Slack Integration
Secure Workspace For File Uploads
View & Action Test Cases
Storage For Testing Logs
User Access Management
Reporting
Automated & On-Demand Reporting
Executive Reports (PDF & DOCX)
Detailed Vulnerability Reports (PDF, DOCX & CSV)
Rebrand DOCX For Your Own Needs
Security
Hosted in Azure / AWS
Mandatory Multi-Factor Authentication (Mobile / Email)
Encrypted Communications & Storage
Enterprise
Email Support

Pro

Vulnerabilities
Access Powerful Analytics
Projects
Create Unlimited Projects
Unlimited Project Scope / Assets
Invite Unlimited Persons To Your Projects
Manage Test Suites & Methodologies
Unlimited Uploads
Enterprise
Priority Email Support

Enterprise

Projects
Clients / Stakeholders Request New Projects
Admins Approve / Reject New Projects
Security
Dedicated Infrastructure For Your Organisation
IP-Whitelisting & Network Access Controls
Enterprise User Management
Enterprise
Custom Domain, Logo & Colours
You Own The Data
API for Custom Integrations
ADFS Integration
Custom Reports
Custom Dashboards
Custom Analytics
Custom Workflows
Administrative Management
Integrate into Your Own Slack Workspace
Phone Support
Email Support
On-Site Support

Meet the team

Fil Filiposki

Fil Filiposki

Stas Filshtinskiy

Stas Filshtinskiy

Some facts about us

500+ Projects Completed
30+ Consultants
15+ Services
50+ Clients & Partners

Why choose us

Cyber Security Hub provides a wide-variety of benefits for our clients, partners, and members.
No matter what your situation, it pays to be part of our fast growing security community. And best of all its free!

Why to choose us

Benefits For Clients:

We can help by providing you with our streamlined engagement process which is minimal fuss and usually means a proposal can be delivered same business day, with ability to commence security testing usually within 2-3 business days.

We provide an industry-wide resourcing approach allowing greater scalability when determining your resourcing needs.

We engage security professionals across the industry allowing for greater flexibility and accuracy when determining the right resource for your project.

Cyber Security Hub charge a nominal fee on top of the contractor’s daily rate allowing for flexible pricing options to cater for all budgets.

Cyber Security Hub provides strict identity management, access control, security of clients' information platform and traceability of the actions performed by security specialists.

The Cyber Security Hub platform is first of its kind and provides significant benefits when managing few, or many, security projects.


Benefits For Members:

We can provide you the ability to work on projects with security professionals in the industry who can share knowledge and provide you with an opportunity to up skill and learn new tricks and techniques.

As Cyber Security Hub engages all major industries, this allows you to broaden your skills and work experience in ways you cannot through traditional channels.

All projects are conducted through a simple statement of work. That’s it. You also receive healthy income for your efforts.

Client testimonials

A message from our consumers