Home Platform updates Work like a pro: 4 automation updates to save time and simplify your workflow

Work like a pro: 4 automation updates to save time and simplify your workflow

by Ioana Rijnetu

Reading time

3 minutes

Reading Time: 3 minutes

We worked hard this month to roll out new updates and we’re excited to share them with you!

These 4 platform features are all about making your workflow smoother, so you can focus on the essential tasks:

1. Use custom wordlists with the Password Auditor
2. NEW: recorded-login authentication for the Website Scanner
3. Screenshots from Website Recon in the Attack Surface
4. Create scan groups for easier scan management

Let’s unpack them!

1. Set up your own list of usernames and passwords and use them with the Password Auditor

As promised, we added custom wordlists for more tools!

In addition to the default wordlists, Password Auditor now includes the option to set up your own list of usernames and passwords and find weak credentials faster.

To create it, go to Wordlists, select Add, and start adding the wordlists you need to run specific pentesting tasks.

After your custom wordlist is created, go to Password Auditor, insert your target, select the wordlist for usernames and passwords, and run a scan with it.

Enrich and update your lists of weak credentials to better detect vulnerable targets and report them to organizations.

Be one step ahead of attackers who use the same tactic to harvest sensitive data and access their internal systems.

custom wordlists with the Password Auditor

2. Run authenticated scans faster with the recorded login method

We’ve added a new authentication method for the Website Vulnerability Scanner to help you perform scans faster for websites with non-standard authentication.

Recorded login authentication allows you to record and replay the login steps, and then upload the recording to the Website Scanner tool.

To learn how you can easily configure this authentication method, make sure to follow the steps described in our dedicated support article.

recorded login authentication

Try this authentication method to perform in-depth scanning and better uncover critical vulnerabilities that an attacker can leverage after logging in to the website (or web apps).

Try the recorded login auth

3. Screenshots generated from Website Recon now available in the Attack Surface

We’ve enhanced the Attack Surface with more aggregated data, so you can get better, clearer view of your network perimeter.
When you scan a target with Website Recon, the scan results – screenshots included – are automatically added to the Attack Surface.

Screenshots added in Attack Surface

Will I see screenshots for other tools?
Yes, we’ll add support for more tools in future updates!

Use the Attack Surface to get an instant overview of all your scan results grouped by asset categories and better visualize your network exposure.

4. Create scan groups for workflow management and hassle-free reporting

Automating your security testing workflow and saving time with reporting are key for us.
That’s why you can now create, define, and group your scans from your Pentest-Tools.com account. Fast and easy!
A scan group is automatically created when you:

  • Select multiple targets and run a scan with one specific tool
  • select multiple targets at the same time using the Scan template
  • Schedule scans against multiple targets at the same time

To easily view and manage all your scan groups, go to Scans, and click on the Scans Groups.
From here, you can quickly export them in an aggregated report to visualize combined scan results in a unified, centralized manner.

Scan groups new feature

To better understand how to create and define scan groups, check out the step-by-step tutorial from our Support Center.

Create your first scan group

Subscribe to future monthly updates

Subscribe now

Give these platform updates a try and see how they can improve your security testing workflow!
Also, did you notice the new Dark Mode available in the Dashboard?
Let us know what you think about it in a comment below.

Related Posts

Pentest-Tools.com September platform updates 2021

Detect & exploit the latest CVEs + more automation updates

Pentest-Tools.com july-august updates

Detect critical CVEs, scan stats + more updates



Subscribe to our Platform Updates

Please select how you would like to hear from Pentest-Tools.com:

Unsubscribe any time by clicking the link in the footer of our emails.
For information about our privacy practices, please visit https://pentest-tools.com/.

We use Mailchimp as our marketing platform. By clicking below to subscribe, you acknowledge that your information will be transferred to Mailchimp for processing.
Learn more about Mailchimp's privacy practices here.

View previous campaigns.