Skip to content Skip to navigation Skip to footer

FortiPenTest: Penetration Testing as a Service

On Demand OWASP Top 10 vulnerability-based penetration testing

Login to FortiPenTest Live SaaS Solution
FortiPenTest: Penetration Testing as a Service banner background banner dots

Overview

FortiPenTest is a cloud-native penetration-testing-as-a-service tool based upon the OWASP Top 10 list of application vulnerabilities, which can be used to find issues before they’re exploited. FortiPenTest leverages our extensive FortiGuard research results and knowledge base to test target systems for security vulnerabilities.

FortiPenTest is a cloud-hosted service and is part of our FortiCloud family of offerings. Yearly subscriptions are available to increase the number of IP / FQDN targets an account can target.

 

SKU Description
FC-10-FPENT-236-02-DD   Stackable subscription adds 10 IP / FQDN targets to a single FortiPenTest cloud account.

Features and Benefits

Malware Protection

OWASP Top 10 and CVSS Based Precise Risk Identification

Up to date with the owasp top 10 vuln detection with deep exhaustive scans.
icon vulnerability

Intensive Web Crawler and Fuzzer Scanning Techniques

We have browser-driven scanning to simulate user interaction with web app/web sites.
monitoring icon

Comprehensive Dashboards with Data Visualization/Interactive GUI

Comprehensive dashboard with interactive UI - threat scores and set scan configurations.
analytics icon

Accurate Remediation Assistance and Payload Identification

Detailed vulnerability reporting with cvss scores, payload, remediations.
icon benefit fortiattack

In-Depth Scan Result Analysis and Downloadable Reports

Instant summary and detailed reports.
Data Protection

Automated Penetration Testing and Vulnerability Assessment

Schedule and trigger periodic scans without user’s intervention - get notified instantly through email.

FortiPenTest Product Details

Leveraging the OWASP Top Ten list of most prominent application security risks, FortiPenTest runs a series of tests and attacks to determine what vulnerabilities a target IP address or Fully Qualified Domain Name (FQDN) is susceptible to, then provides full details on not only the vulnerability, but also what you can do about it. Configurable E-mail notifications allow you to choose what to be alerted about.

FortiPenTest runs a series of tests and attacks to determine what vulnerabilities a target IP address or Fully Qualified Domain Name (FQDN) is susceptible to. The OWASP Top Ten list is then referenced to ensure the most common issues are tested and validated. FortiPenTest provides full details not only on what vulnerabilities are found, but also what you can do about them, categorized by CVSS severity score.