Test Suites and Test Cases

AttackForge helps you to track your security testing performed on any assessment or project. This is achieved using Test Cases which are assigned to a project, and can be further assigned to individual testers and/or scope assets.

Every Test Case on the project can help to guide you on what needs to be tested, how it should be tested, and help you to store and capture testing evidence and artefacts.

A Test Suite is made up of a collection of Test Cases which are relevent to the Test Suite.

For example, a Test Suite might be "Web Application Pentest" and a Test Case on this Test Suite might be "Verify that request throttling is in place to prevent automated attacks against common authentication attacks such as brute force attacks or denial of service attacks."

AttackForge already comes pre-loaded with many Test Suites from industry methodologies such as OWASP, OSSTMM, NIST and more.

This repository provides additional industry methodologies you can import into your AttackForge tenant. The following methodologies are supported:

Red Teaming

Web Application & API

Mobile Application

Network Infrastructure, Hardware and IOT

You can load additional testing methodologies in the form of Test Cases which can be imported on your Test Suites using the import options on Test Cases:

About

Security Testing Methodologies and Checklists which can be imported into AttackForge

MIT License