Skip to content
Methodology

The 18-phase methodology your scans run.

Every scan follows a structured 18-phase offensive security assessment grounded in the OWASP Testing Guide v4.2 and PTES. Every finding is scored with CVSS v4.0 and mapped to the frameworks you map against.

OWASP Testing Guide v4.2PTESNIST CSF 2.0CVSS v4.0
Assessment Phases

18 phases, start to retest.

Fourteen run automatically on every scan. Mobile, network/MITM, and social engineering are scope-dependent — human-led engagements you add when they're in scope.

Every Scan Produces

What lands in your dashboard.

01

PDF Report + Executive Summary

A full technical report plus a stakeholder-ready executive summary.

02

SARIF Export

SARIF 2.1.0 per engagement — pipe findings straight into GitHub Code Scanning.

03

Findings with CVSS, CWE & PoC

Every finding scored with CVSS v4.0, classified by CWE, and backed by a validated proof-of-concept.

04

Control-Level Compliance Map

Each finding mapped to the exact controls it affects across 8 frameworks.

05

Remediation Code

Copy-paste fixes written for your language and framework, plus the AI remediation chatbot.

06

One-Click Retest

Re-run the original attack after you patch to confirm the fix holds.

Compliance Mapping

Mapped to the frameworks you answer to.

Every finding includes:

CVSS v4.0 score with full vector string

CWE classification

OWASP Top 10 2025 mapping

OWASP API Top 10 2023 mapping (where applicable)

NIST CSF 2.0 category

SOC 2 Trust Services Criteria

PCI DSS 4.0
287 controls · 12 requirements
  • 6.5.1 Injection
  • 6.5.4 Insecure Comms
  • 8.2.1 Auth Strength
  • 11.3.1 Pen Testing
SOC 2
64 controls · 5 TSCs
  • CC6.1 Logical Access
  • CC6.7 Data Transmission
  • CC7.1 Threat Detection
  • CC7.2 Monitoring
HIPAA
54 controls · 3 rules
  • 164.308(a)(1) Risk Analysis
  • 164.312(a)(1) Access
  • 164.312(e)(1) Transmission
  • 164.308(a)(6) Incident
ISO 27001
93 controls · Annex A
  • A.5.15 Access Control
  • A.8.24 Crypto
  • A.8.28 Secure Coding
  • A.8.29 Security Testing
NIST CSF 2.0
106 subcategories · 6 functions
  • ID.AM-02 Software Inventory
  • PR.AA-03 Auth
  • DE.CM-01 Monitoring
  • RS.MI-01 Containment
OWASP Top 10
10 categories
  • A01 Broken Access
  • A03 Injection
  • A05 Misconfig
  • A07 Auth Failures
OWASP API Top 10
10 categories
  • API1 BOLA
  • API2 Broken Auth
  • API4 Resource Consumption
  • API8 Misconfig
OWASP LLM Top 10
10 categories
  • LLM01 Prompt Injection
  • LLM02 Insecure Output
  • LLM06 Sensitive Info
  • LLM07 System Prompt Leak

Mapping is posture and prep — it shows which controls each finding touches so you walk into an audit with the groundwork done. GDPR / CCPA obligations are flagged in the privacy phase where relevant.

Ready to start?

Start with a free scan to surface the obvious issues in under 60 seconds. Upgrade to Pro for the full 18-phase autonomous pipeline with compliance-mapped findings and remediation code in your stack.

Subscribe to Pro