Experience with penetration testing

Hey,

I'm the co-founder of Heyhack—a tool for conducting automated penetration tests of web apps and APIs. We recently announced our integration with Vanta, which lets you sync vulnerabilities found by Heyhack directly into Vanta.

I'd love to hear your thoughts on penetration testing. Have you worked pentest consultants and, if so, how was your experience? What are you expecting to get out of a pentest? Are you mostly looking to get a pentest to comply with certification requirements or are you using pentests actively to increase the security of your application?

Looking forward to hearing about your experiences.

Comments

2 comments

  • Comment author
    Shannon Idea generator Vanta Team Member Conversation starter
    • Edited

    Hello Sebastian!

    This is such a great question.

    We had some trouble with posts being flagged -  I apologize for the delayed response. The community is still in the early stages, but more Vanta users are joining everyday! 

    Thanks so much for being a member of the Vanta community, and we look forward to continuing to build the community with you!

    0
  • Comment author
    Erin Jones

    I know this is an aged thread but I was just looking for this today.  Sebastian Brandes, is HeyHack still available?  When i search for it I get directed to an F5 login...  I am in the market for exactly what you seem to be selling but I have been unable to find you... B)

    0

Please sign in to leave a comment.