We integrate any new tool into our pipeline in a single day on request.

ScanFactory combines multiple pentest solutions in one cloud platform

ScanFactory creates an internal graph which interconnects all company assets, keeps historical track on them, and uses various mechanisms to optimize the vulnerability search. This allows to find long chains on complex vulnerabilities.

Scope

support.company.com

www.company.com

blog.company.com

80

80

443

Status

Testcase

You set and forget

Developer pushes a new change to Javascript file and forgets to remove UAT subdomain

Crawler discovers a change during a daily scan and adds this subdomain to the database

You receive 1 alert with an issue

Later on this subdomain nmap discovers an open port 808

Dirsearch discovers a directory /clientname-dev/ using a custom dictionary from scraped keywords

Wappalyzer discovers updated Wordpress

Wpscan extracts registered userIDs and successfully bruteforces admin password

Recon: Subdomain enumeration

Recon: Subdomain bruteforce

Application Security Testing Scanner

Web crawler

Web path scanner

Tools under the hood:

Leading Vulnerability Assessment Tool

Port scanning

Bruteforce passwords

Subdomain takeover

Fingerprint technologies

Historical website search

WordPress security scanner

Private exploits

Please fill in the form and we'll get back to you within 2 business days with suggested dates for a demo.

Request

a live demo

©️ Scanfactory, 2020

Get in touch with us.

Built by experts for everyone.