The effectiveness of testing with Penterep confirmed by a scientific study: 10x more vulnerabilities detected.

Our product Penterep has become the subject of a professional study published in the prestigious scientific journal Computers & Security (Elsevier, ScienceDirect). This journal is one of the most respected in the field of cybersecurity, and every article published undergoes a very strict peer-review process. This means that all claims must be backed by evidence, and publication cannot be “paid for.”

The study was prepared by experts also involved in the development of Penterep. The key point, however, is that every claim was independently verified by reviewers. They thoroughly examined the methodology, results, and conclusions, and only after this rigorous review was the article accepted for publication. Thanks to this, the results are objective and credible.

Study results

Testing was conducted on the vulnerable web application OWASP Juice Shop, where at least 52 vulnerabilities were confirmed. Penterep was the only tool able to detect all 52/52 vulnerabilities. It is possible that the application contained even more, but 52 is the maximum number detected across all tools in the comparison.

The average detection rate of the other tools was only 5 vulnerabilities.

Critical and high vulnerabilities

The most significant results were revealed in the assessment of vulnerability severity:

This means that the competition was only able to detect a fraction of what truly threatened the application.

Why is Penterep leading?

Penterep combines the power of automation and manual testing.

Traditional scanners rely solely on automated methods, which have limited coverage.

Penterep enables penetration testers to connect automated and manual testing.

Thanks to this approach, Penterep was the only tool capable of capturing 100% of vulnerabilities – and more importantly, also those that would represent the greatest real-world risks for an organization.