AttackForge Core

Made For Security Teams


AttackForge Core helps security teams increase speed & quality of penetration testing reports. You get a client portal with workflows to unify pentesting across your team and enterprise. You can also measure effectiveness & prove value of your penetration testing program & services.

Save Time

High-quality customisable reports, on-demand and when you need them.

Save Effort

Integrated, Centralised & Rich Issue Library. Speak a consistent language.

Save Money

Tools and workflows to reduce project overheads and costs by up to 40%.

Team Collaboration

Business, Technology and Security teams collaborating in one place.

Methodology

Pre-loaded with industry benchmarks - for efficient & auditable testing.

Clearer View

See your organistion's vulnerable areas. Know your real weaknesses.

Still interested? Request a Demo

Enterprise Reporting

Custom Reporting

Professional Reports On-Demand

Create fully customised on-demand reports in a fraction of the time. Personalize your reports to your own style and corporate branding. Upload as many report formats as you need - for different customers, business units and functions.

Enterprise Analytics

Analytics

Know Your Security Posture - At Any Time

Track vulnerabilities over time, across customers, organisation or individual business units. Track vulnerabilities by SLAs. Compare against periods of time. Know what are your Top 10 Most Vulnerable Assets, Top 10 Most Common Vulnerabilities and Top 10 Failed Testcases. Measure your Mean-Time-To-Remediate (MTTR). Better plan your investment in training and awareness. Executive and line reporting out of the box.

Methodologies & Runbooks

Methodologies & Runbooks

Industry Standard Benchmarks and Methodologies

AttackForge Enterprise is loaded with industry benchmarks from OWASP, NIST, PCI, OSSTMM and others. Enforce and Control exactly how you want it tested, every time. Bring standardization and consistency to your pentesting projects & program. Keep your customers & auditors happy.

Libraries

Libraries

Centralized Libraries. Unified Vulnerability Language.

Create standardized vulnerability definitions and recommendations. Ensure your teams are all speaking the same language. Reduce time & effort on review cycles. Bring vulnerabilites immediately to development teams and engineers - Reduce Time-To-Remediate (TTR).

Collaboration

Collaboration

Bring Business, Engineering & Security Teams Together.

Connect with your teams on every project. Exchange vulnerability information fast, so you can remediate even faster! Integrations with Microsoft Teams, Slack, and Discord.

Enterprise Scheduling

Scheduling

Schedule and Plan Your Testing Program

Keep on top of your testing program. Let your customers request new projects in a standardized way. Track projects in the pipeline. Availability assistant & detailed planner to help manage resources effectively.

Enterprise Search

Search

Vulnerability Information When You Need It

Search helps you to find the vulnerability information you need. Search vulnerabilities by asset; discover vulnerabilities within a group; find vulnerabilities by title; or dill-down by tags. Answer the tough questions within a fraction of the time!

Attack Chains

Attack Chains

See Attack From Hackers Perspective

Attack Chains help demonstrate exactly what an attacker is doing at every step - in a simple and clear visual story. Understand how vulnerabilities can be grouped together to cause devastating attacks against your organisational assets. Map Attack Chains to MITRE ATT&CK® Framework in minutes!

Import Vulnerabilities

Import Vulnerabilities

AttackForge Connector Helps You Import Vulnerabilities From Tools, Platforms and Scripts

AttackForge Connector helps you import vulnerabilities to your projects from tools such as Tenable Nessus and Burp Suite Proxy. Or you can use the API for custom imports.

Export Vulnerabilities

Export Vulnerabilities*

AttackForge Helps You Export Vulnerabilities Into Your Enterprise Ecosystem

AttackForge helps you export vulnerabilities to your enterprise ecosystem and ticketing tools, including JIRA, ServiceNow, Azure DevOps and more. * Priced separately

Retesting

Retesting

Track Remediation Efforts and Retesting

Know if and when vulnerabilities are remediated or fixed. Transparency and traceability - audit logs & recorded history for every vulnerability. Request, track & perform retesting.

Global Dashboard

Global Dashboard

Single Pane of Glass Into Your Security

Monitor how your organisation is performing against its security & penetration testing program. Drill-down on key vulnerabilities and projects. Track performance of projects and make more informed decisions.

Group Dashboard

Group Dashboard

Monitor Your Business Units

Keep on top of your security posture for a business unit, division, subsidiary, 3rd party or team – know which areas in your organisation are doing well or which areas need improvement. Group membership provides easy to manage access controls for your teams.

Project Dashboard

Project Dashboard

Control Panel For Your Pentests

View testing progress & vulnerabilities for your projects - at a glance. Download reports in multiple formats. Export vulnerabilities into ticketing systems. View daily tracking. Participate in team chats. Create fully custom reports. View attack chains.

Daily Progress Tracking

Daily Progress Tracking

Easily Track Pentesting Progress

Track how your projects are performing – on a daily basis. Know if issues are being experienced & when they are resolved. Get to know your project team. Daily breakdown of vulnerabilities found & test cases actioned.

Stealth Mode

Themes

Personalise Your Theme

Enable different themes based on your mood and preference. Discover themes such as Stealth Mode, The Matrix, Lightning, Halloween, RedBack, Neptune, Firestorm, Lost Woods & Amethyst.

Need Help? Check out our Support Site

Pricing


NEW

Core

AttackForge Core

$1250

per month / billed annually

50 Users
5 Project Credits
$150/project Thereafter
12-Months Licence
Private Dedicated Infrastructure in
Azure Region of Your Choice
Whitelabelled For Your Organization
10 Groups (Clients/Business Units)
Standard Support SLA
Upgrades & Enhancements
Support Centre
Access to AF Ticketing System
All amounts are in US Dollars
*Priced separately


Core

Deployment

Dedicated Infrastructure / Single Tenant Hosted in Microsoft Azure Region of Your Choice, Fully Managed Service
Handover SLA 5 days
Custom Domain
Whitelabelled / Company Logo
Two-Factor Authentication (2FA)
IP-Whitelisting & Network Access Controls
Custom Tenant Configurations * Limited

Licence & Fees

12-Month Licence
* billed in US dollars
$15K
Included Project Credits
5
Additional Project Credits
$150 per project
Users
50
Assets
Unlimited
Uploads
Unlimited
Groups (Clients/Business Units)
10
Upgrades to Latest Features

Support

Email
Ticketing System
Advanced Support 15 Hours
Support SLA Standard
Support Centre & Training Videos
Training Workshops 1

Reporting

Professional On-Demand Reports (PDF, DOCX, HTML, CSV, JSON)
Customizable On-Demand Reports (PDF, DOCX, HTML, CSV, JSON)
Group Reports
ReportGen Offline - For Custom Reports In Your Own Styles, Templates
ReportGen Integrated - For Custom Reports On-Demand

Vulnerabilities

Global Dashboard
Advanced Search
Attack Chains
Integration with CI/CD tools - JIRA, ServiceNow, Azure DevOps * Premium
Integration with Vulnerability Management Tools * Premium
Retest Workflows
Full Support for CVSS v3.1

Projects

Dashboards & Project Tracking
Dedicated, Secure Workspace for Every Project
Scheduling & Calendar
Resource Management
Roles-Based Access Controls
Project Request Workflows
Custom Notifications
Integration with Collaboration tools - MS Teams, Slack, Discord

Libraries

Centralized & Customizable Vulnerability Templates
Pre-loaded Vulnerability Templates from CWE & CAPEC
Centralized & Customizable Test Suites & Methodologies/Runbooks
Pre-loaded Test Suites from OWASP, OSSTMM & Others

Groups

Groups (Clients/Business Units) 10
Group Dashboard & Tracking
Link Groups to Project, Vulnerabilities, Users

Analytics

Analytics Dashboard

Notifications

Project Event Notifications
Custom Project Event Notifications

Need help choosing? We've got you covered

Security

For Peace of Mind


As a software security provider, AttackForge is committed to providing highly secure and reliable software for our customers. Check Out Our Full Security Statement