Overview

Introduction

What is Pensar Console?

Pensar Console is a cloud-hosted platform for running autonomous, continuous, on-demand penetration tests. It empowers security teams to proactively identify and fix vulnerabilities in their web applications and APIs through AI-powered testing.

How It Works

1

Create Your Organization

Set up your workspace at console.pensar.dev to represent your organization.

2

Connect Your Source Code

Optionally connect your VCS provider (GitHub, GitLab, or Bitbucket) or upload source code as a zip file.

3

Add Domains

Add the domains you want to test. Domains must be verified using DNS TXT records before testing can begin.

4

Automatic Recon & Testing

Our AI agents automatically identify your attack surface and test domains for security issues across standard security frameworks.

5

Review Results

Issues are reported in the UI with detailed information, proof-of-concepts, and remediation guidance. Export comprehensive reports when testing completes.

Key Features

Attack Surface Mapping

Automatically identify web pages, API endpoints, and external attack surfaces from your source code or live domains.

Hybrid Testing

Hybrid pentesting combining source analysis with live exploitation for maximum coverage and precision.

Auto Remediation

Automatically fix identified vulnerabilities with AI-generated patches and verification testing.

Hybrid Testing Methodology

Pensar uses a hybrid approach that combines source code analysis with live exploitation:

We strongly encourage providing source code, live domains, and authentication credentials. The agent leverages all available sources simultaneously — analyzing your code for vulnerabilities and validating them against your running application with real proof-of-concept exploits. This hybrid methodology delivers the highest-precision findings with the fewest false positives.

Ready to Get Started?

Jump into our Getting Started guide to create your workspace and run your first penetration test.