Pentest-Tools.com VPN Agent

What do you like best about the product?

The Pentest-tools.com platform allows us create multiple test vectors for our customers so they can get an external and internal perspective of their vulnerabilities especially for web applications. We like the speed and performance of the tool. Support has also been great and responds in a timely fashion.

What do you dislike about the product?

The plans have some caveats and limitations you need to pay attention to.

What problems is the product solving and how is that benefiting you?

The platform allows us to offer vulnerability scanning services, DAST and a "light" automated pen-test.

What do you like best about the product?

We monitor several servers (Debian, Ubuntu) at the network and application level. The results are quickly available, precise, and help us maintain our security level at a high standard. Especially in the course of the ongoing certification according to BSI IT-Grundschutz, the reports were very helpful. The linking of external knowledge bases in the findings ensures quick verification and additional background knowledge. The relatively low price makes the offer affordable even for small businesses. The support responded quickly when I reported a false positive.

What do you dislike about the product?

Unfortunately, you can no longer replace assets (such as an IP address) within a month with another one (or if a scan has already taken place). I understand it, because this way you could easily bypass the limit by deleting and adding anew. Still, it's a bit annoying for me because I would actually like to monitor 6 targets.

What problems is the product solving and how is that benefiting you?

Review our own update processes and compliance requirements

What do you like best about the product?

Pentest-Tools.com is a cloud-based toolkit for offensive security testing, focused on web applications and network penetration testing. The platform streamlines the use of 20+ tools that cover everything from recon, vulnerability scanning, and exploit tools through an easy to use, intuitive user interface that anyone with any level of cybersecurity experience can pick up and begin integrating into their operations immediately. That would be my favorite aspect of the platform, its ease of use.

What do you dislike about the product?

Something I didn't like is that without notification, Pentest-Tools modified their "scanned asset" plan limitation, which previously enabled teams to rotate assets as needed to remain under the limit of 500 total assets being managed on the platform, now the limit of total assets appears to be 10,000, which is great, however only under the "Teams" plan, only 500 "new" assets may be added per billing cycle, which could be limiting to teams that begin new engagements that will far exceed the 500 asset limit.

Despite the frustration of this change taking place without notification, Pentest-tools customer support was incredibly responsive and accommodating when we reached out with our concerns, and overall our experience with the pentest-tools support team has been fantastic.

What problems is the product solving and how is that benefiting you?

Pentest-Tools allows team members to quickly integrate themselves into reconnaissance, vulnerability scanning, or other offensive workflows with their intuitive user interface.This drastically reduces the learning curve for new team members. Also, white-labeling features are available for reporting, which like the rest of the platform, is incredibly easy to generate and includes evidence as well as recommended actions to remediate the discovered findings. However, we do wish that there was an "MSSP dashboard" available that offered more granular insights of all specific vulnerability findings across a given environment for reporting purposes. The platform also offers clear documentation that describes exactly what each tool tests for as well as a list of scanner IP addresses for whitelisting during engagements. The documentation has been extremely helpful in creating custom scans that remain within the scope of our engagements. Overall, Pentest-Tools.com helps our team to rapidly conduct offensive security assessments and enhances our ability to deliver high-quality reporting insights and reccomedtions to clients, all while maintaining operational efficiency.

What do you like best about the product?

We recently started using PenTest-Tools for our vulnerability scanning. This tool combines multiple scanning capabilities into a single platform, allowing us to centralize our vulnerability management process. By consolidating various tools into one, it has become much easier to manage and monitor the overall picture of our vulnerability management efforts. Additionally, PenTest-Tools offers an integration feature with JIRA, which helps us address findings more efficiently. The configuration of the tool is simple and straightforward, and the support team is also very good at providing prompt feedback and solutions.

What do you dislike about the product?

As just started to sue it, couldn't find any drawbacks for now.

What problems is the product solving and how is that benefiting you?

Checking for internal and exposed CVE's on our environment and making sure we review and treat the detected issues properly.

What do you like best about the product?

I have been using the tool for over 7 years. The developers of the site, have broken down and simplified the process for our organization. The reporting is straight forward, and always helpful in locking down our systems.

What do you dislike about the product?

There isn't anything to dislike. We would like to see scheduling option for templates that we have developed ourselves.

What problems is the product solving and how is that benefiting you?

For our own peace of mind, we need to know if there are any blindspots, additionally provide reports to our users.