High-quality customisable reports, on-demand and when you need them.
Integrated, Centralised & Rich Issue Library. Speak a consistent language.
Tools and workflows to reduce project overheads and costs by up to 40%.
Business, Technology and Security teams collaborating in one place.
Pre-loaded with industry benchmarks - for efficient & auditable testing.
See your organistion's vulnerable areas. Know your real weaknesses.
Still interested? Request a Demo
We're a Consultancy
AttackForge Core can help you with:
Client portal for direct customer collaboration
Service catalogue to speed up scoping process
Workflows to manage customers & projects
Integrated custom reports in your own style
Centralized libraries to speed up reporting
Collaboration with your teams
Automations & Integrations to do more with less
Other value-add features to retain existing and attract new customers
We're a Small-to-Medium Enterprise
AttackForge Core can help you with:
Tracking & analyzing your pentesting program & vulnerabilities
On-demand reports for all stakeholders
Secure workspace for project data
Standardized methodologies for consistent testing
Centralized vulnerability language across organization
Scheduling & resource management
Unified workflows for security, engineering and business teams – internal or external
Professional Reports On-Demand
Create fully customised on-demand reports in a fraction of the time. Personalize your reports to your own style and corporate branding. Upload as many report formats as you need - for different customers, business units and functions.
Know Your Security Posture - At Any Time
Track vulnerabilities over time, across customers, organisation or individual business units. Track vulnerabilities by SLAs. Compare against periods of time. Know what are your Top 10 Most Vulnerable Assets, Top 10 Most Common Vulnerabilities and Top 10 Failed Testcases. Measure your Mean-Time-To-Remediate (MTTR). Better plan your investment in training and awareness. Executive and line reporting out of the box.
Methodologies & Runbooks
Industry Standard Benchmarks and Methodologies
AttackForge Enterprise is loaded with industry benchmarks from OWASP, NIST, PCI, OSSTMM and others. Enforce and Control exactly how you want it tested, every time. Bring standardization and consistency to your pentesting projects & program. Keep your customers & auditors happy.
Centralized Libraries. Unified Vulnerability Language.
Create standardized vulnerability definitions and recommendations. Ensure your teams are all speaking the same language. Reduce time & effort on review cycles. Bring vulnerabilites immediately to development teams and engineers - Reduce Time-To-Remediate (TTR).
Bring Business, Engineering & Security Teams Together.
Connect with your teams on every project. Exchange vulnerability information fast, so you can remediate even faster! Integrations with Microsoft Teams, Slack, and Discord.
Schedule and Plan Your Testing Program
Keep on top of your testing program. Let your customers request new projects in a standardized way. Track projects in the pipeline. Availability assistant & detailed planner to help manage resources effectively.
Vulnerability Information When You Need It
Search helps you to find the vulnerability information you need. Search vulnerabilities by asset; discover vulnerabilities within a group; find vulnerabilities by title; or dill-down by tags. Answer the tough questions within a fraction of the time!
See Attack From Hackers Perspective
Attack Chains help demonstrate exactly what an attacker is doing at every step - in a simple and clear visual story. Understand how vulnerabilities can be grouped together to cause devastating attacks against your organisational assets. Map Attack Chains to MITRE ATT&CK® Framework in minutes!
AttackForge Connector Helps You Import Vulnerabilities From Tools, Platforms and Scripts
AttackForge Connector helps you import vulnerabilities to your projects from tools such as Tenable Nessus and Burp Suite Proxy. Or you can use the API for custom imports.
AttackForge Helps You Export Vulnerabilities Into Your Enterprise Ecosystem
AttackForge helps you export vulnerabilities to your enterprise ecosystem and ticketing tools, including JIRA, ServiceNow, Azure DevOps and more. * Priced separately
Track Remediation Efforts and Retesting
Know if and when vulnerabilities are remediated or fixed. Transparency and traceability - audit logs & recorded history for every vulnerability. Request, track & perform retesting.
Single Pane of Glass Into Your Security
Monitor how your organisation is performing against its security & penetration testing program. Drill-down on key vulnerabilities and projects. Track performance of projects and make more informed decisions.
Monitor Your Business Units
Keep on top of your security posture for a business unit, division, subsidiary, 3rd party or team – know which areas in your organisation are doing well or which areas need improvement. Group membership provides easy to manage access controls for your teams.
Control Panel For Your Pentests
View testing progress & vulnerabilities for your projects - at a glance. Download reports in multiple formats. Export vulnerabilities into ticketing systems. View daily tracking. Participate in team chats. Create fully custom reports. View attack chains.
Daily Progress Tracking
Easily Track Pentesting Progress
Track how your projects are performing – on a daily basis. Know if issues are being experienced & when they are resolved. Get to know your project team. Daily breakdown of vulnerabilities found & test cases actioned.
Personalise Your Theme
Enable different themes based on your mood and preference. Discover themes such as Stealth Mode, The Matrix, Lightning, Halloween, RedBack, Neptune, Firestorm, Lost Woods & Amethyst.
Need Help? Check out our Support Site
per month / billed annually
5 Project Credits
Private Dedicated Infrastructure in
Azure Region of Your Choice
Whitelabelled For Your Organization
10 Groups (Clients/Business Units)
Standard Support SLA
Upgrades & Enhancements
Access to AF Ticketing System
All amounts are in US Dollars
|Dedicated Infrastructure / Single Tenant Hosted in Microsoft Azure Region of Your Choice, Fully Managed Service|
|Handover SLA||5 days|
|Whitelabelled / Company Logo|
|Two-Factor Authentication (2FA)|
|IP-Whitelisting & Network Access Controls|
|Custom Tenant Configurations||* Limited|
Licence & Fees
* billed in US dollars
Included Project Credits
Additional Project Credits
||$150 per project|
Groups (Clients/Business Units)
|Upgrades to Latest Features|
|Advanced Support||15 Hours|
|Support Centre & Training Videos|
|Professional On-Demand Reports (PDF, DOCX, HTML, CSV, JSON)|
|Customizable On-Demand Reports (PDF, DOCX, HTML, CSV, JSON)|
|ReportGen Offline - For Custom Reports In Your Own Styles, Templates|
|ReportGen Integrated - For Custom Reports On-Demand|
|Integration with CI/CD tools - JIRA, ServiceNow, Azure DevOps||* Premium|
|Integration with Vulnerability Management Tools||* Premium|
|Full Support for CVSS v3.1|
|Dashboards & Project Tracking|
|Dedicated, Secure Workspace for Every Project|
|Scheduling & Calendar|
|Roles-Based Access Controls|
|Project Request Workflows|
|Integration with Collaboration tools - MS Teams, Slack, Discord|
|Centralized & Customizable Vulnerability Templates|
|Pre-loaded Vulnerability Templates from CWE & CAPEC|
|Centralized & Customizable Test Suites & Methodologies/Runbooks|
|Pre-loaded Test Suites from OWASP, OSSTMM & Others|
|Groups (Clients/Business Units)||10|
|Group Dashboard & Tracking|
|Link Groups to Project, Vulnerabilities, Users|
|Project Event Notifications|
|Custom Project Event Notifications|