Olivia
Online
Dmitry Chastuhin
@_chipik
Yet another security researcher
Joined March 2009
243 Following
1.5K Followers
365 Posts
ย Pinned Tweet
I really don't like how pentesters' team work is organized these days. It's just chat+unstructured project data in txt files.
Zero true teammate collaboration. So, I've spent the last few months solving the problem. Check it out:Hive - self-hosted pentest collaborative platform!
GitLab and SAST reports. Advantages and disadvantages
https://t.co/UKlBnJac8o
And you also need a system to aggregate and manage vulnerabilities found by all those security scanners.
Hexway ASOC is great for this ๐ค
Overwhelmed by the number of supply chain security vendors? ๐
Here's a detailed breakdown of 20+ vendors across:
* Securing source code access and CI/CD pipelines
* SCA
* Malicious dependencies
* Container security
* SBOMs
* Code provenance
and more!
It was great collaborating with @InvestiAnalyst on this, hope it's useful!
Played around with ChatGPT for pentest reporting.
Still a long way from making us unemployed anytime soon. But yeah! It can speed up a boring routine๐บ
How to automate pentest reporting with Chat GPT?
With just a button click, you can now quickly generate descriptions or risks of issues or any other report content, making the process more efficient and less time-consuming.
Keep an eye on updates
https://t.co/55WuGN0V5K
What's wrong with scanners' output parsers?
https://t.co/UKrlhfCTa7
The ability to look at the entirety of a situation to see the bigger picture is critical, especially for application security.
What's the point of audits if all the vulnerabilities found remain in 50-page pentester reports or ci/cd Pipeline artifacts?
https://t.co/eWfS1havU2
@intigriti hexway hive. Self-hosted. Free.
https://t.co/1leoEheFwi
Take a peek at how convenient it is now to merge the same issues in Hexway Hive.
We love making the work of pentesters more pleasant with each new release.
https://t.co/aoI7wUv24U
What if we say that @_hexway can be MORE adaptive?
Yeah, it's not just you can pick a name or something. Next Hive update will bring you a little bit more flexibility in your pentest workflow.
Soon.
#hexway #PTaaS #penetrationtesting #pentest
@clintgibler @0xCaptainFreak Not sure that Jira is good for Vuln Management.
Interesting how you guys(@0xCaptainFreak) handle issues deduplication problem?
Why are all modern checklist apps so awful?
Some thoughts on the topic while we're developing checklists for pentesters
https://t.co/z3Q5H8BmdA
Using your favorite vulnerability scanners has just got easier!
We know how to help both sides of the penetration testing process.
https://t.co/aoI7wUuufm
So now you can compare output from different scan tools(nmap, nessus, etc) and detect what services/port/IPs appear over time. Super cool!
People love dashboards, don't they? We've implemented a special view in Hive that displays pentest project summary (scope, services, ports, most vulnerable hosts, etc).
Hey-Hey!
We know you love @Burp_Suite (we too). But it's really hard to collaborate, share results in it and see the full picture when you work as a team.
We're trying to solve that problem! Soon, we're going to release something very interesting!
https://t.co/UaBNwW5XPY
Hey!
We've developed a tool, that enables pentest service providers to offer Penetration Testing as a Service (PTaaS) out of the box!
Meet - Hexway Apiary!
Now you can deliver your pentests faster and turn One-Time Customers into Lifetime Customers
https://t.co/MPxTCR1xme
The short story about how we used Clubhouse as a social engineering tool to find out more about our client's employees during RedTeam testing
https://t.co/vVHiCvFek2
@payloadartist Hey! I did a port scan of these assets and uploaded the results to https://t.co/9sHRY993m9.
Much easier to analyze what apple has in the scope. Happy hunting!
Hey!
Need a tool to collaborate and analyze the scope(nmap, nessus,etc),reportgen during a pentest or bb,but it's too tedious to install something(oh you)?
I have a solution for you:https://t.co/9sHRY993m9
Free,easy-to-use,and with cat pictures inside. Well,what else do you need?
Last Seen Users on Sotwe
Bulbull
Seen from Indonesia
Lsalpa
Seen from Indonesia
Sex is the real life
Seen from Germany
Daddy & Trung niรชn
Thomas90...29k
Seen from United States
said
Seen from Egypt
ะฎะบะฐ ะฎะบะฐ
Seen from Netherlands
nixpa
Seen from United Kingdom
ุฑุฌููู ูุญูู ู
ุดุนุฑ
Seen from Oman
Manda
Seen from Indonesia
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers