Platform updates

Learn about new features, tools released, and other product updates we work on to make Pentest-Tools.com easier for you.

Platform updates

Visualize exploit paths with the Sniper network graph

Whether working in offensive or defensive security, we all see it: high-risk, widespread vulnerabilities cause significant disruptions to already struggling security teams.

Author(s)

Andra Zaharia

Published at: 23 Jun 2022

Platform updates

April updates: Get RCE evidence for 6 critical CVEs

After weeks of working on auto-exploitation for this critical CVE (CVSSv3 9.8), we finally have it! As a Pentest-Tools.com customer, you can run Sniper Auto-Exploiter to get conclusive proof that validates targets vulnerable to this high-risk vulnerability, which bad actors have already shown interest in.

Author(s)

Ioana Rijnetu

Published at: 05 May 2022

Platform updates

March updates: Spring4Shell: find and confirm exploitable targets and more updates

If you instantly thought of Log4Shell when Spring4Shell emerged just a few days ago, you’re not alone. A coolheaded analysis reveals this CVE is not as severe as last year’s Log4j vulnerability. Nevertheless, it remains a priority in terms of detection and patching. Here’s why.

Author(s)

Ioana Rijnetu

Published at: 11 Apr 2022

Platform updates

February updates: run deeper, more comprehensive scans

Supporting your ethical hacking engagements is what we do with each new batch of monthly updates we roll out. Here’s how we walk the talk this month.

Author(s)

Ioana Rijnetu

Published at: 16 Mar 2022

Platform updates

January updates: new pentest robots and stronger integration

“Great for streamlining any security engagement” is the kind of feedback that keeps us working to roll our monthly updates. Here’s what we did last month to honor this commitment.

Author(s)

Ioana Rijnetu

Published at: 18 Feb 2022

Platform updates

December updates: 6 new ways to make your workflow smoother

Hope 2022 is off to a great start for you! Supporting your security efforts is what we do, so here’s a fresh batch of platform updates we rolled out at the end of 2021. Why check them out? Because they’ll help you get more work done, faster with the same tools and features you know (and hopefully love!).

Author(s)

Ioana Rijnetu

Published at: 20 Jan 2022

Platform updates

November updates for powerful workflows, including detection for Log4Shell

Giving you the tools you need right now to speed up detection and reporting is always our top priority. Especially when your work is essential to effectively prioritize remediation. So, with every monthly update, we strive to do just that.

Author(s)

Ioana Rijnetu

Published at: 16 Dec 2021

Platform updates

Detect & exploit the latest CVEs + more automation updates

“Great and getting even better” is what we commit to with each monthly update we roll out on Pentest-Tools.com.

Author(s)

Ioana Rijnetu

Published at: 05 Oct 2021

Platform updates

Detect critical CVEs, scan stats + more updates

If you’ve had an intense summer, that makes two of us. We worked hard to roll out new and helpful updates, so let’s break them down:

Author(s)

Ioana Rijnetu

Published at: 14 Sep 2021

Platform updates

Detect ProxyShell (pre-auth Microsoft Exchange RCE) with Pentest-Tools.com

On-prem Microsoft Exchange servers have created a lot of work for IT and security specialists in the past months. In March, ProxyLogon left servers vulnerable to Server-Side Request Forgery through CVE-2021-26855, so we launched a dedicated scanner for it. In May, #proxynotfound popped up, so we integrated detection for it into our Network Vulnerability Scanner to make detection and reporting faster.

Author(s)

Andra Zaharia

Published at: 11 Aug 2021

Platform updates

OWASP & CWE vuln classifcation added, wordlist limit increased, and more updates

This month we rolled out 5 platform improvements that streamline your pentests so you can do more of the work you most enjoy:

Author(s)

Ioana Rijnetu

Published at: 11 Jun 2021

Platform updates

Detect Microsoft Exchange RCE #proxynotfound with our Network Vulnerability Scanner

Running on-prem Microsoft Exchange servers? If you didn’t catch the NSA boilerplate announcement, there’s another batch of vulnerabilities to scan for – and we built what you need.

Author(s)

Andra Zaharia

Published at: 13 May 2021

Discover our ethical hacking toolkit and all the free tools you can use!

Create free account

Platform updates

Visualize exploit paths with the Sniper network graph

April updates: Get RCE evidence for 6 critical CVEs

March updates: Spring4Shell: find and confirm exploitable targets and more updates

February updates: run deeper, more comprehensive scans

January updates: new pentest robots and stronger integration

December updates: 6 new ways to make your workflow smoother

November updates for powerful workflows, including detection for Log4Shell

Detect & exploit the latest CVEs + more automation updates

Detect critical CVEs, scan stats + more updates

Detect ProxyShell (pre-auth Microsoft Exchange RCE) with Pentest-Tools.com

OWASP & CWE vuln classifcation added, wordlist limit increased, and more updates

Detect Microsoft Exchange RCE #proxynotfound with our Network Vulnerability Scanner

Discover our ethical hacking toolkit and all the free tools you can use!

One of EMEA's fastest-growing tech companies

Independently audited company-wide ISMS

50,000+ security folks are here. Are you?

Security leaders trust what they can prove