What it does: - Complete local deployment - no cloud dependencies, no data transmission
- Real-time logging of CLI commands and Burp Suite network requests; no more terminal screenshots for evidence collection
- AI-assisted vulnerability documentation with structured outputs
- Custom Word template system for client-specific report formatting
Why local matters: On-premise solutions are essential for security professionals handling sensitive client data. Cloud-based alternatives introduce unnecessary compliance risks that most teams can't afford.
Technical approach:
Desktop application that captures CLI outputs and Burp plugin which registers network requests and responses from the proxy, then structures findings into proper vulnerability reports: title, description, proof of concept, remediation steps, and CVSS scoring. The templating engine supports custom Word documents with placeholders - design your reports in Word, automate them in Pentra.
Current features:
- Cross-platform (Windows/Mac/Linux)
- Burp Suite integration for HTTP request capture
- Customizable vulnerability templates
We're actively incorporating feedback from penetration testing teams to refine the workflow integration before our July 21st release.
— Alex, Remus, Bogdan