Pentest-Tools.com helps security professionals find, validate, and communicate vulnerabilities faster and with greater confidence - whether they’re internal teams defending at scale, MSPs juggling clients, or consultants under pressure.

With comprehensive coverage across network, web, API, and cloud assets, and built-in exploit validation, it turns every scan into credible, actionable insight.

Trusted by over 2,000 teams in 119 countries and used in more than 6 million scans annually, it delivers speed, clarity, and control - without bloated stacks or rigid workflows.


Pentest-Tools

We have an XSS Scanner. It doesn't DO maybes, and on top of that, it's free to try.

Here's what it ACTUALLY does:
✅ Fires real JavaScript payloads, not pattern matches
✅ Flags a parameter only when the payload runs
✅ Catches reflected and stored XSS, logged in or out
✅ Gives you the request, payload, and response as proof

Try it as a test, no account needed. pentest-tools.com/website-vulnerability-scanning/x…

#offensivesecurity #penetrationtesting #ethicalhacking

23 hours ago | [YT] | 1

Pentest-Tools

Exploitation started in March. Cisco disclosed in June. Patch landed June 10.

For roughly 2 months, whoever had working knowledge of CVE-2026-20245 used it _freely_. Defenders had no advisory, no patch, no signal.

Matei Badanoiu, our lead security researcher, put it plainly in Infosecurity Magazine:

"Whoever used this vulnerability had working knowledge of it in this period while defenders had none."

🏴‍☠️ The exploitation path is specific: an attacker already holding netadmin privileges on Cisco Catalyst SD-WAN Manager could escalate to root via a crafted CSV upload through the request tenant-upload CLI command.

That prerequisite sounds like a meaningful bar - and it is - until you factor in that CVE-2026-20182 & CVE-2026-20127 (also recently disclosed Cisco flaws) may lower it *considerably*.

From root on the SD-WAN Manager control plane, an attacker can manipulate routing, alter policy enforcement, and reduce network visibility. The architectural placement is what makes root here different from root on a workstation.

The Mandiant (part of Google Cloud) report confirms what experienced practitioners already treat as a working assumption: for high-impact vulnerabilities, in-the-wild exploitation tends to run well ahead of any public disclosure.

If you're running Cisco Catalyst SD-WAN Manager: patch against Cisco's advisory, retain audit logs before upgrading, and review them for anomalous activity from netadmin-level accounts.

📍Read the full article by Kevin Poireault: www.infosecurity-magazine.com/news/cisco-vulnerabi…

1 day ago | [YT] | 1

Pentest-Tools

You've never had more context. And the tooling's never been more capable. Coverage you'd have spent *weeks* building now arrives in hours.

By every measure, you should feel more expert than ever.

Some practitioners do. Some don't. And some can't quite name what they feel.

How do *you* feel about your expertise right now?

4 days ago | [YT] | 1

Pentest-Tools

You know the tools. You know the features. But how do they ALL work together?

Find out how we built validation into the vulnerability scanning flow itself & how we connected it attack surface discovery, exploitation, reporting + all the steps in between (and beyond).

It's all on pentest-tools.com/product

6 days ago | [YT] | 1

Pentest-Tools

One less stop in procurement purgatory! 💪

If your org runs on Azure, you can now buy Pentest-Tools.com directly from Azure Marketplace:

✅ Same plans, same pricing as buying directly.
✅ Bills against your existing Microsoft Azure Consumption Commitment.
✅ No separate contract review.
✅ Web, network, API, and cloud scanning in one place.
✅ Validated vulnerabilities with proof, not just CVE lists.

Start scanning in minutes: marketplace.microsoft.com/en-us/product/saas/pente…

6 days ago | [YT] | 0

Pentest-Tools

ICYMI, our #vulnerabilityresearch team found 2 vulnerabilities in phpBB that let an attacker walk in _without_ a password:

_CVE-2026-48611 (9.4): one unauthenticated request, any account, including admin. Default installations. No user interaction. Went unnoticed for over a *decade*.

_CVE-2026-48612 (8.3): if OAuth is configured, an attacker can silently bind their credentials to a logged-in user's account. No click needed from the victim. A hidden image tag in a post is enough.

Full technical write-up, potential impact & detection guidance👇👇👇
pentest-tools.com/research/phpbb-authentication-by…

1 week ago | [YT] | 4

Pentest-Tools

Knowing something was _off_ before you could prove it.
Knowing when the _obvious_ path was the wrong one.
Knowing _when_ to keep pulling.

No dashboard tracks any of that.

Which means the skills that actually separate good practitioners from the rest stay invisible.

Which underrated skill improved your offsec intuition & attacker mindset?

#offensivesecurity #penetrationtesting #ethicalhacking

1 week ago | [YT] | 0

Pentest-Tools

Most organisations that fumble #cybersecurity incidents have perfectly adequate technical controls. What they're missing is a CEO, a General Counsel, and a CISO who've sat in a room together and had an uncomfortable conversation before the crisis hit.

Sergiu Zaharia, PhD, our CISO, has run crisis simulations across military intelligence, telecoms, and regulated sectors for 25 years.

The most common finding across these experiences was never technical.

It was *decisional*:

Who has authority to take a production system offline?
When does legal need to be in the room?
Do you pay the ransom?

Teams that haven't practiced these questions under pressure don't answer them well when push comes to shove.

He shares the full argument in the latest Intelligent CISO special report, alongside CISOs from Zscaler, Mimecast, SailPoint, and other passionate leaders 👉 magazine.intelligentciso.com/IDKd/p48/p46

2 weeks ago | [YT] | 2

Pentest-Tools

Office Hours is back this Wednesday. Jan Pedersen walks through pre-audit validation: finding and fixing what's there before a formal pentest or audit does, so the external report holds no surprises.

30 minutes live, 15 minutes of Q&A.

Wednesday, June 17, 8:00 AM Los Angeles / 11:00 AM New York / 4:00 PM London / 6:00 PM Bucharest 👉 zoom.us/webinar/register/9217815290134/WN_A6m_8zzf…

2 weeks ago | [YT] | 2

Pentest-Tools

AI is finding vulnerabilities faster than most organizations can patch them. That's not a tooling problem.

Daniel Bechenea, security manager at Pentest-Tools.com, in ITPro: "More patches, shipped faster. But that's the upstream change. The downstream problem is, none of that vendor-side progress makes the organizations receiving those patches any faster at deploying them."

The gap between knowing and doing just got more consequential.

Kate O'Flaherty's full article is here for the reading

www.itpro.com/security/why-patching-velocity-matte…

2 weeks ago | [YT] | 4