Features

A Complete Pentest Management Platform in the Cloud

Deliver Pentest-as-a-Service, linking clients with pentesters for ongoing, collaborative security and process management. Cyver Core offers everything a pentest professional needs to digitize, automate, and optimize work delivery.

Pentest Report Automation 

Streamline Pentest Reporting

Cut manual reporting and management with automation, linking tools to project templates, and reports. We do the repetitive work, so you can get back pentesting.

Automated Reporting

Automatically generate reports (Web and PDF) by importing work data to report templates, & customize with Markdown, CSS, and tokens.

Compliance Norms Mapping

Map findings to standard compliance controls like OWASP Top 10, SANS Top 25, or ISO27001 to generate meaningful reports.

Pentest Checklists

Build accountability and save time with customizable pentest checklists for OWASP Top 10, OWASP Testing Guide, ASVS & more.

Vulnerability Scanner Integrations

Link tooling like Burp, Nessus, OpenVAS, and more to easily import findings directly from tooling into client dashboards and reports.

Align People and Tasks

Project & Team Management

Gain real pentest oversight & insight with team and task management tooling. Cyver Core’s pentest management platform enables accountability and transparency across projects.

Real-time Notifications

Update stakeholders in real-time as project status changes, tasks become available, & clients make requests.

In-app Communication

Offer a better experience with real-time, in-app communication, so you never have to share data over email.

Assigned Tasks

Automatically assign tasks to relevant roles and start pentests with full oversight of who’s responsible and why.

Role Management

Build teams and assign roles to automate project setup and offer stakeholder collaboration as a standard.

A new way to manage pentests 

Vulnerability Management

Get freedom to scale with simplified pentest project management. Cyver Core organizes your pentests across clients and pentest types, so you can scale without hiring on more pentesters.

Vulnerability Libraries

Manage findings with libraries, labels, and attributes like CWE and CVE to organize, auto-add data, and track completed work.

Project Templates

Create and run everything from red team assessments to vulnerability scans with integrated & custom templates to help. 

Full Traceability

Automatically document findings, pentest tasks, and checks for full traceability and accountability across projects. 

Project Workflows

Onboard/Offboard projects, share results and manage projects with step by step Workflows to automate every type of project.

Cut manual work on pentest reporting without sacrificing control & customization 

Collaborate on client security

White-Label Client Portal

Deliver more than just the report with a full suite of client-facing tools designed for collaboration, remediation, and project management – for full visibility vulnerability findings, trends, and fixes. 

Insights & Vulnerability Management

Make pentest deliverables better with actionable reports, insights,  and vulnerability management included as part of the portal.

Collaborative Pentest Processes

Deliver secure in-app communication, vulnerability findings as tickets, and workflow management to put client teams in control.

Request Projects & Track Progress

Allow clients to easily request pentest projects, pay inside the portal, and track progress over the course of the pentest.

Integration with Internal Tools & API

Give clients the oversight and control they need with project management tool integrations and full API access. 

Full Pentest-as-a-Service

Full Customer and Pentest Journy

Increase the lifetime value of every client. Cyver Core offers the tools you need to build longer, stronger client relationships with collaboration and customer experience.

Send Quotes

Send quotes, project estimates, scoping information, and more, all from your Cyver Core portal.

Client Management

Get at-a-glance overviews for clients, with complete documentation, history of projects, and contacts in one place.

Recurring Pentest

Deliver automatic, recurring pentests so you earn more per client, and they stay more secure with a long-term partnership.

White-Label Branding

Brand Cyver Core’s URL, client portal, reports, and templates to deliver improved customer experience under your own brand.

Automate Scans & Assessments 

Vulnerability Scanning

Streamline vulnerability scanning and assessments with a full suite of tools to automate and manage scans and their results including an integrated scanner in your Cyver Core Portal. 

Magnifying glass over web page icon

Integrated Scanner

Leverage integrated scanners to offer PTaaS, DAST, and attack surface management, or bring your own tooling.
continuous icon

Continuous Projects

Create project templates and automatically run them again and again so you don’t have to spend more time on scans than you have to. 
Page icon

Streamline Reporting

Automatically generate reports from scan data, map vulnerabilities to your library, and add templates or custom report sections.
two gears icon

Vulnerability Management

Automatically add data to findings, merge results between scans, and count instances so scan data helps clients stay secure.

Full deployment control

Deployment Options

Cyver Core offers a standard multi-tenant deployment in the Azure cloud as part of our base plan. But, Cyver Core also offers solutions for organizations with more specific or custom security and deployment needs. We’re also fully SOC2 compliant, so your and your customer’s data stays secure. 

Deployment Region

Choose a deployment region in the EU, US, or UK to meet compliance or regulatory requirements.

Icon of a computer in Cyver.io

Data Isolation

Get full database and storage isolation to protect your or customer data and meet regulatory requirements.

 

two gears icon

Full App Isolation

Fully isolate your Cyver Core app in deployment with a separate webapp, database, and storage.

Toolbox icon

Private Deployment

Maximize security with a private deployment on the whole SOC2 compliant stack in an Azure regin or your choice. 

Bring your own tooling 

API & Integrations

Integrate your toolkit, extend Cyver Core functionality, and seamlessly pull data into one central platform with our API and integrations. 

Link External Tooling

Link project management tooling and seamlessly integrate data across your tooling with either a custom connection or one of our integrations.

Icon of a computer in Cyver.io

Vulnerability Connectors

Link your tooling to automatically import vulnerability findings, libraries, descriptions, & more so everything is right where you need it.

two gears icon

Full API Extensibility

Need custom push data? Our REST API allows you to connect to any tooling or sources you like, so everything shows up in your portal. 

Toolbox icon

Events and WebHooks

Set up events and webhooks for project management, pentesting, scanners, & more , so your tooling automatically updates as you work. 

Cut manual work on pentest reporting without sacrificing control & customization 

Cyver Features list - full features
 product brochure 

Download the full feature list & product tour

Download our Product Tour Brochure to see features, benefits, and Cyver Core’s offerings in a shareable and printable PDF format.

Improved customer experience

A work management platform
for pentesters

Deliver fully-secure pentest-as-a-service in the cloud, complete with a responsive UI and integrated support portal. We’ve thought of everything so you don’t have to. It's not Asana or Jira, it's made for pentest professionals.

Multi-language

Deliver reports, dashboards, portal access, and content in a language that makes sense for you and your clients. Cyver Core offers full multi-language support, so your dashboards and content are delivered in ways that work for your business.

Cloud Access

Digitize pentest deliverables with a cloud interface between you and the client. Cyver Core delivers cloud access for you and your end-clients, so pentest management, communication, and deliverables are as accessible as possible.
Page icon

API

Connect Cyver Core to the apps and tools that drive your firm, with full API access. Import data from tools, export tickets to client work platforms, and integrate tooling directly into Cyver Core's process so you get more from our platform.

Responsive UI

Get complete freedom to access, share, and manage data across devices, with a fully responsive UI. Cyver Core adapts to your device, whether you’re accessing findings, uploading files, or generating & viewing reports or dashboards.

Support Portal

Cyver Core is designed to be as intuitive and user friendly as possible and that means having a support portal built in. We offer full documentation, user guides, and end-user guides, so you don’t have to.

Security

Share project details, communication, and findings in a SOC2 compliant environment. Cyver Core encrypts traffic, access, and data storage, with 2-factor authentication for portal logins, to ensure you stay safe. See our security standards.

Any questions?

We're here to help

What is a Pentest Management Platform?

Pentest Management Platforms like Cyver Core digitize pentest workflows, replacing manual communication and reports with digital workflows. It means real-time results, live communication with clients, and findings as tickets. Plus, we offer automated pentest reporting, complete with integrations for tools like Burp Suite, Nessus, NMap, & more. Our goal is to help pentesters save time (70-85% of time spent on every report), reduce overhead hours for pentest management, and deliver pentest-as-a-service to clients.

How is Cyver Core Secured?

Cyver Core is fully secured, regularly pentested, and regularly backed up. We maintain SOC2 compliant infrastructure, as verified by external auditors. All user data is stored redundantly and automatically backed up inside Microsoft Azure architecture, with fully redundant server architecture and network connectivity. We take security seriously, and you can see a full list of our security practices in our security policy.

Will My Clients See I Use Cyver Core?

No! Cyver Core is fully white label. When you onboard your clients to our platform, they see your branding and brand name. You can also fully customize reports, project templates, and other digital assets. Your clients, your brand, your digital privacy, powered by Cyver Core.

How Does Cyver Core Automate Workflows?

Cyver Core utilizes standardized workflows to automatically progress projects based on pre-defined parameters and settings. You set up project templates and Cyver Core automatically performs workflows inside those, to move the project from one stage to the next, to create Findings tickets from imported data, to notify stakeholders, and to schedule the next pentest. In addition, Cyver Core uses automation and Smart features to auto-fill tickets, to create projects, and to generate reports, so you have to do the minimum manual work possible. Visit our features page to learn more.