Pentest-Tools
Pentest-Tools.com helps security professionals find, validate, and communicate vulnerabilities faster and with greater confidence - whether they’re internal teams defending at scale, MSPs juggling clients, or consultants under pressure.
With comprehensive coverage across network, web, API, and cloud assets, and built-in exploit validation, it turns every scan into credible, actionable insight.
Trusted by over 2,000 teams in 119 countries and used in more than 6 million scans annually, it delivers speed, clarity, and control - without bloated stacks or rigid workflows.
Pentest-Tools
The Office Hours recording is up. 🎬
Radu Popovici and Dragoş Sandu walked through what 241 developers told us about AI coding and security validation.
The full survey is also available at pentest-tools.com/insights - free download, no account needed.
21 hours ago | [YT] | 0
View 0 replies
Pentest-Tools
We surveyed 241 developers about how AI coding tools are changing the vulnerability landscape. The short version: the bugs are getting subtler. Less obvious, more architectural, harder to catch before deployment.
Full findings here: pentest-tools.com/insights
2 days ago | [YT] | 2
View 0 replies
Pentest-Tools
We surveyed 241 devs about AI-assisted coding and vulnerability assessment. The results were eye-opening.
Find out what they said tomorrow live with Dragos Sandu and Radu Popovici: 11:00 AM New York / 4:00 PM London / 6:00 PM Bucharest.
Register: zoom.us/webinar/register/5917794531843/WN_1WYk4PoX…
Where does your validation process fall behind most with AI-generated code?
3 days ago | [YT] | 1
View 0 replies
Pentest-Tools
Your detection logic is asking the wrong question.
Razvan Ionescu, head of professional services at Pentest-Tools.com, told ITPro why most organizations haven't mapped their blast radius before asking what they'd detect. Kate O'Flaherty's full piece is worth a read.
www.itpro.com/security/cyber-attacks/how-to-protec…
6 days ago | [YT] | 1
View 0 replies
Pentest-Tools
Office Hours is back this Wednesday, May 27. AI coding vs. security validation, live with our Head of Engineering and Product Manager.
30 minutes of discussion, 15 minutes of open Q&A. One session: 11:00 AM New York / 4:00 PM London / 6:00 PM Bucharest.
Register: zoom.us/webinar/register/1317794653573/WN_1WYk4PoX…
1 week ago | [YT] | 4
View 0 replies
Pentest-Tools
The "AI vs. deterministic tools" debate is a vendor debate.
Adrian Furtuna, CEO of Pentest-Tools.com, wrote the clearest take on where each one actually belongs in an offensive security workflow.
Worth reading: www.machine.news/why-ai-and-deterministic-offensiv…
1 week ago | [YT] | 2
View 0 replies
Pentest-Tools
🚨 Worried about your #NGINX web servers? 👉We built a *free* scanner for CVE-2026-42945 (NGINX Rift). 👇
Check your targets now (no account required): pentest-tools.com/network-vulnerability-scanning/c…
Once the scan completes (and if your target is vulnerable), you'll get a finding that includes:
✅ the detected NGINX version
✅the vulnerable range it falls into
✅the CVSS score & severity rating
✅remediation guidance
Download it as a PDF and share it with whoever handles remediation.
Oh, and one thing to check before you call it patched: upgrading your primary NGINX install *doesn’t* cover copies embedded in container images or Kubernetes ingress controllers.
Those need separate inventory and patching.
PS: We also have a dedicated Kubernetes vulnerability scanner. You can find it on our website.
#offensivesecurity #pentesting #vulnerabilitymanagement
1 week ago | [YT] | 2
View 0 replies
Pentest-Tools
Stop doing robot work. You have better things to do than running the same manual vulnerability scans every week.
In our latest Pentest-Tools.com Office Hours, Jan Pedersen showed how to reclaim hours of your week by putting your scans on autopilot and piping findings directly into your stack, like Jira, Microsoft Teams, or Vanta.
Watch the full replay here to see the exact workflow.
Join us tomorrow to tackle reporting and findings management. Pick a session that fits your schedule:
Morning: zoom.us/webinar/register/4117791115535/WN_DFFhgMS_…
Afternoon: zoom.us/webinar/register/8017791115050/WN_iCy2DN8O…
#infosec #pentesting #offensivesecurity
1 week ago | [YT] | 1
View 0 replies
Pentest-Tools
You've filed the week's findings 📁, sent the reports, and your eyes hurt in that *specific* way only screens do it.
What happens next says more about you than your tool stack ever will. ☕
When your switch off "work mode", what's the first thing you reach for?
2 weeks ago | [YT] | 2
View 0 replies
Pentest-Tools
Your scan says "vulnerable." But where did that confidence actually come from?
NIST's April 15 update changes how the NVD enriches CVEs, and it affects every passive detection layer (ours included).
Daniel Bechenea wrote up what shifts, what holds, and where active detection still does the heavy lifting.
pentest-tools.com/blog/accuracy-nist-cve-enrichmen…
How are you adjusting your workflow? Drop a comment.
2 weeks ago | [YT] | 2
View 0 replies
Load more