frontpage.

Show HN: Hackerest – Real-time penetration testing, built by security engineers

https://hackerest.com

2•mcisternino•1mo ago

We launched Hackerest last week. We’re a group of security engineers based in Italy (ex-Amazon, Accenture) who spent years doing pentests the traditional way and kept wondering why the workflow still looks like it did in 2010.

Most pentests today (still) work like this:

1. the engagement runs for days or weeks

2. nothing is shared until everything is finished

3. the client gets a PDF long after the issues were actually discovered

4. half of the attack surface has changed by then

What Hackerest does:

* findings appear in real time during the active testing window, as testers discover them

* built-in versioning of findings, so changes, updates, and retests are tracked cleanly

* multiple testers can collaborate without blocking each other

* the final PDF is generated automatically at the end

* customers use a credit-based model to start tests quickly

We DON'T use AI to perform the actual testing. Hacking, in our experience, is a creative and exploratory process that depends heavily on intuition, pattern recognition, and years of hands-on work. Automating that would either produce shallow results or give a false sense of coverage.

We’d rather be transparent about what we offer: real testers, with real experience, working in real time. AI might help with auxiliary tasks in the future (summaries, noise reduction, report cleanup), but the core of the work is done by humans who know what they’re doing. We don’t want to sell automation where it doesn’t belong.

The tester network:

We collaborate with independent, experienced pentesters. The platform handles assignment, access isolation, and report normalization so testers can focus on actual discovery rather than logistics.

What we're building next:

We’re adding workflow integrations (starting with Jira), more granular notification controls, and better tools for teams running multiple engagements in parallel. Longer term, we’d like to expose a structured API to let companies pull findings directly into their internal systems.

If you’ve worked on similar problems, we’d really value feedback. Our goal isn’t to reinvent pentesting, just to make it match how engineering teams actually operate today.

My LinkedIn, if you want context on who’s behind the project: https://www.linkedin.com/in/nt-authority-system/

Trying to make an Automated Ecologist: A first pass through the Biotime dataset

Watch Ukraine's Minigun-Firing, Drone-Hunting Turboprop in Action

Free Trial: AI Interviewer

FDA Intends to Take Action Against Non-FDA-Approved GLP-1 Drugs

Supernote e-ink devices for writing like paper

We are QA Engineers now

Show HN: Measuring how AI agent teams improve issue resolution on SWE-Verified

Adversarial Reasoning: Multiagent World Models for Closing the Simulation Gap

Show HN: Poddley.com – Follow people, not podcasts

Layoffs Surge 118% in January – The Highest Since 2009

Papyrus 114: Homer's Iliad

DicePit – Real-time multiplayer Knucklebones in the browser

Turn-Based Structural Triggers: Prompt-Free Backdoors in Multi-Turn LLMs

Show HN: AI Agent Tool That Keeps You in the Loop

Why Every R Package Wrapping External Tools Needs a Sitrep() Function

Achieving Ultra-Fast AI Chat Widgets

Show HN: Runtime Fence – Kill switch for AI agents

Researchers surprised by the brain benefits of cannabis usage in adults over 40

Peter Thiel warns the Antichrist, apocalypse linked to the 'end of modernity'

USS Preble Used Helios Laser to Zap Four Drones in Expanding Testing

Show HN: Animated beach scene, made with CSS

An update on unredacting select Epstein files – DBC12.pdf liberated

Was going to share my work

Pitchfork: A devilishly good process manager for developers

You Are Here

Why social apps need to become proactive, not reactive

How patient are AI scrapers, anyway? – Random Thoughts

Vouch: A contributor trust management system

I built a terminal monitoring app and custom firmware for a clock with Claude

Tiny C Compiler