Sold by: Pentest-Tools.com
Pentest-Tools.com provides cloud-based vulnerability scanners for web application scanning and infrastructure vulnerability management. No setup required, easy to use interface. A security scanner for both web applications and network security.
Sold by: Pentest-Tools.com
Overview
Pentest-Tools.com embeds 20+ vulnerability scanners for web applications and network infrastructure security. With the Website Vulnerability Scanner you can detect vulnerabilities in web applications like XSS, SQL injection, command injection and other OWASP Top 10 issues. Furthermore, with our Network Vulnerability Scanner you can discover critical CVEs that may affect the security of your servers from both public and private networks.
Pentest-Tools.com is an all-in-one solution that eliminates the need of multiple scanning vendors by combining a powerful web application scanner with infrastructure vulnerability detection tools in order to provide a comprehensive security assessment across all your assets.
Vulnerability scanning is a security testing technique that attempts to discover vulnerabilities by sending multiple probe requests to the target service and observing the responses. The vulnerability scanner acts like an external attacker that checks the presence of common application vulnerabilities like Cross-Site Scripting, SQL injection, Remote Code Execution. The scanner also verifies for missing patches that lead to critical CVEs like Log4Shell, ProxyLogon and more.
Highlights
- No setup required, vulnerability scanners ready to use
- Easy-to-use web interface and friendly security reports
- Continuous vulnerability monitoring of your assets
Details
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Dimension | Description | Cost/month |
|---|---|---|
Basic | All tools included, 5 assets, 2 parallel scans | $85.00 |
Advanced | Basic + 50 assets, 5 parallel scans, reporting, private network scans | $190.00 |
Teams | Advanced + 500 assets, 10 parallel scans, API, sub-users, integrations | $395.00 |
Vendor refund policy
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
We are committed to respond promptly to all customer requests in order to fix any issues they may encounter.
The common support issues are explained in our Support portal: https://support.pentest-tools.com/en || support@pentest-tools.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
mogenius combines visibility, observability, and automation in a single platform for comprehensive Kubernetes control.
Gupshup Whatsapp
By GupShup Inc
Gupshup is awarded the WhatsApp Partner of the Year for 2023 and 2024. With Gupshup Conversation Cloud, businesses can seamlessly engage with customers using the latest WhatsApp features, including Flows, catalogs, carousel messages, as well as beta capabilities like voice calling and group messaging.
Embrace a streamlined approach to SAP client creation, ensuring impeccable data integrity. Bid farewell to prolonged system refreshes and exorbitant storage expenses. Dive into the next era of SAP landscape optimization with Client Sync™.
Conga Contract Intelligence
By Conga
Conga Contract Intelligence combines people, process, and technology into an effortless and accurate contract analytics tool providing the ability to maximize the value of every contract. It uses industry-leading artificial intelligence (AI) and machine learning (ML) capabilities to enable companies to centralize the location of all contracts and accurately extract key data points, making it easily searchable and reportable within the secure repository. By automating contract review and analysis, Conga Contract Intelligence can help organizations save time and scale their legal team for more value-added work, quickly understand their risk exposure in contracts, and reduce errors, delays, and disputes. It can also help organizations identify opportunities for cost savings and revenue generation by analyzing contract terms and conditions. Conga Contract Intelligence provides value to organizations by increasing efficiency, reducing risk, and improving visibility into contract data.
Customer reviews
Computer & Network Security
Streamlined Offensive Security Testing
Reviewed on Dec 12, 2024
Review provided by G2
What do you like best about the product?
Pentest-Tools.com is a cloud-based toolkit for offensive security testing, focused on web applications and network penetration testing. The platform streamlines the use of 20+ tools that cover everything from recon, vulnerability scanning, and exploit tools through an easy to use, intuitive user interface that anyone with any level of cybersecurity experience can pick up and begin integrating into their operations immediately. That would be my favorite aspect of the platform, its ease of use.
What do you dislike about the product?
Something I didn't like is that without notification, Pentest-Tools modified their "scanned asset" plan limitation, which previously enabled teams to rotate assets as needed to remain under the limit of 500 total assets being managed on the platform, now the limit of total assets appears to be 10,000, which is great, however only under the "Teams" plan, only 500 "new" assets may be added per billing cycle, which could be limiting to teams that begin new engagements that will far exceed the 500 asset limit.
Despite the frustration of this change taking place without notification, Pentest-tools customer support was incredibly responsive and accommodating when we reached out with our concerns, and overall our experience with the pentest-tools support team has been fantastic.
Despite the frustration of this change taking place without notification, Pentest-tools customer support was incredibly responsive and accommodating when we reached out with our concerns, and overall our experience with the pentest-tools support team has been fantastic.
What problems is the product solving and how is that benefiting you?
Pentest-Tools allows team members to quickly integrate themselves into reconnaissance, vulnerability scanning, or other offensive workflows with their intuitive user interface.This drastically reduces the learning curve for new team members. Also, white-labeling features are available for reporting, which like the rest of the platform, is incredibly easy to generate and includes evidence as well as recommended actions to remediate the discovered findings. However, we do wish that there was an "MSSP dashboard" available that offered more granular insights of all specific vulnerability findings across a given environment for reporting purposes. The platform also offers clear documentation that describes exactly what each tool tests for as well as a list of scanner IP addresses for whitelisting during engagements. The documentation has been extremely helpful in creating custom scans that remain within the scope of our engagements. Overall, Pentest-Tools.com helps our team to rapidly conduct offensive security assessments and enhances our ability to deliver high-quality reporting insights and reccomedtions to clients, all while maintaining operational efficiency.
Leave a comment0 comments
Brenda W.
Simple, highly centralized vulnerability management platform with multiple tools
Reviewed on Nov 22, 2024
Review provided by G2
What do you like best about the product?
We recently started using PenTest-Tools for our vulnerability scanning. This tool combines multiple scanning capabilities into a single platform, allowing us to centralize our vulnerability management process. By consolidating various tools into one, it has become much easier to manage and monitor the overall picture of our vulnerability management efforts. Additionally, PenTest-Tools offers an integration feature with JIRA, which helps us address findings more efficiently. The configuration of the tool is simple and straightforward, and the support team is also very good at providing prompt feedback and solutions.
What do you dislike about the product?
As just started to sue it, couldn't find any drawbacks for now.
What problems is the product solving and how is that benefiting you?
Checking for internal and exposed CVE's on our environment and making sure we review and treat the detected issues properly.
Pirooz A.
Simple, Elegant tool for pen testing ...
Reviewed on Oct 04, 2024
Review provided by G2
What do you like best about the product?
I have been using the tool for over 7 years. The developers of the site, have broken down and simplified the process for our organization. The reporting is straight forward, and always helpful in locking down our systems.
What do you dislike about the product?
There isn't anything to dislike. We would like to see scheduling option for templates that we have developed ourselves.
What problems is the product solving and how is that benefiting you?
For our own peace of mind, we need to know if there are any blindspots, additionally provide reports to our users.
Computer & Network Security
Pentest-Tools saves tons of time with finding vulnerabilities in web applications
Reviewed on Aug 05, 2024
Review provided by G2
What do you like best about the product?
Pentest-Tools makes it easy to perform security assessments of web applications with virtually no setup or infrastructure requirements. They also provide a variety of tools for OSINT gathering and attack surface mapping to help make sure that you're giving customers good coverage of their public-facing attack surface.
What do you dislike about the product?
Their assessment capability for SPA (single page applications) is relatively new so results with modern SPA applications can be hit-or-miss. Also, they do support scanning behind authentication, but they designed it to be very simple and user friendly. For many HTML-based login forms this works fine, and they do allow you to provide cookies or headers to use for other cases but if those don't work, they don't provide much in the way of logging or other tools for customizing the authentication workflow in order to troubleshoot and get it working. Their tech support team has helped in most cases that I've had trouble with, but resolution time may vary if their 'first line of support' can't figure it out.
What problems is the product solving and how is that benefiting you?
Pentest-Tools helps me save time on web application assessments by providing an easy-to-use tool that does a lot of reconaissance, web vulnerability scanning, and information-gathering tasks in fully automated ways.
Manos G.
Amazing pen test tools and reporting ! Beautiful crafted exploits
Reviewed on Jul 18, 2024
Review provided by G2
What do you like best about the product?
Ease of scope , organise workspaces , time efficiency , easy reporting , grouping of targets and threat analysis . All links for CVEs are there and pentest made easy. Great features to help you and compliment your manual pentetest, either is black box or gray box
What do you dislike about the product?
Nothing to dislike here , what pentest-tools is doing is value for money, all I want to see more is to add more exploits. Other than that great job guys !
What problems is the product solving and how is that benefiting you?
Vulnerability assessment and automation on certain exploits ...