Vulnerability Verification for Blackbox Assessments Now Available

We've added Vulnerability Verification to Takumi blackbox assessments. This feature lets you verify whether a vulnerability detected in a past assessment has actually been fixed.

Overview

Vulnerability Verification re-runs the original attack scenario for a specific vulnerability. Run it after deploying your fix to confirm that the remediation works as intended.

Dispatch it from the "Verify Vulnerability" button on an application assessment report, then select the vulnerability you want to verify.

The result is shown as Not Vulnerable or Vulnerable, along with the reasoning behind the verdict.

Prerequisites

You need a completed blackbox assessment with at least one detected vulnerability. No additional setup, such as GitHub integration, is required.

Availability

Vulnerability Verification is available to all Takumi byGMO users with blackbox assessment access.

For details, see the Vulnerability Verification documentation.