Cyver Core
Cyver Core is a pentest reporting and management platform designed to streamline the entire penetration testing workflow. The platform supports the complete pentest journey from scoping to remediation through five key phases: 1. Scoping: Collects asset information and helps create quotes and statements of work 2. Testing: Enables direct uploads from pentest tools, provides findings libraries, and offers checklists and benchmarks 3. Reporting: Automates report generation with customizable templates 4. Delivery: Facilitates sharing findings through a white-labeled client portal 5. Retesting & Remediation: Tracks vulnerability remediation and supports recurring pentests The platform includes several core features to help security teams manage penetration testing operations: - Streamlined reporting with tool integrations and content libraries - Vulnerability management with reusable findings across projects - Checklists and benchmarks for compliance controls - Audit and compliance mapping for standards like OWASP Top 10 and PCI-DSS - Project and team management capabilities - Dashboards and insights for vulnerability analysis - White-labeled client portal for secure collaboration - Vulnerability scanning for continuous assessments - API and integrations with common pentest tools Cyver Core supports integration with various security testing tools and allows security consultants and pentest service providers to maintain their own branding through white-labeling options. The platform aims to reduce manual work in pentest reporting and improve client communication throughout the security testing process.
FEATURES
Pentest Reporting
Findings Libraries
Import from External Tools
Continuous Assessments
Workflows
White-label Client Portal
Retesting Workflows
Dashboards and Insights
Integrations and API
Collaboration
EXPLORE BY TAGS
SIMILAR TOOLS
A community repository of workflow templates for the Ayehu NG platform that enables automated IT and business process execution.
RedELK is a SIEM tool designed for red teams to monitor and receive alerts about blue team detection activities during penetration testing engagements.
Automated Digital Forensics and Incident Response (DFIR) software for rapid incident response and intrusion investigations.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.
SOARCA is an open-source SOAR platform that automates security incident response workflows using standardized CACAOv2 playbooks and multiple integration interfaces.
A community-driven repository and development framework for creating custom automation activities within the Ayehu NG IT orchestration platform.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
IRIS-SOAR is a Python-based modular SOAR platform that automates security incident response workflows and integrates with DFIR-IRIS for enhanced digital forensics operations.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.