AI-Powered Application Penetration Testing—Scale Security Without Compromise Learn More

Services

Platform

Industries

Events

Resources

About

Services Overview

Pen Testing Overview

A modern approach to cybersecurity that combines automated testing tools with human expertise to identify all your vulnerabilities.

AI/LLM Security Assessment

Application Penetration Testing

• AI-Powered Penetration Testing

• Mobile Application Assessment

• Secure Code Review

Cloud Security

Product Security

Network Security

• External Pen Testing

• Internal Pen Testing

Partner Assessments

• CASA & MASA

• Oracle Assessment

• ioXt Alliance Certification

CTEM Overview

Identify, prioritize and resolve business-impacting exposures through managed services that support and strengthen your CTEM program.

Attack Surface Discovery

Attack Surface Testing

Emerging Threats

Red Team & Readiness Overview

Get a holistic view of your ability to defend against a real-world attack.

Red Teaming

• Social Engineering

• Ransomware Readiness

IR Tabletop Exercises

Cosmos Platform

Meet Cosmos: The continuous offensive security platform designed to provide proactive defense.

Cosmos AI Engine

Introducing Cosmos AI, the engine behind AI-Powered Penetration Testing.

Featured Report

gigaom leader attack surface management radar 2026

Bishop Fox Named Leader & Fast Mover in the 2026 GigaOm Radar!

Get an overview of the Attack Surface Management (ASM) market — and learn why Bishop Fox was named a leader and Fast Mover by the analysts at GigaOm.

See how we help teams in these industries stay ahead of real attackers. More sectors supported than listed.

Energy & Utilities Industry

Financial Industry

Health Plans

Healthcare Industry

Media & Entertainment Industry

Trusted Partner Network (TPN)

New Alliance

Bolstering the Financial Sector Cyber Resilience!

Bishop Fox is an FS-ISAC Affiliate Partner helping members strengthen resilience with adversary-driven offensive security—from penetration testing to red teaming—designed to protect financial operations, support regulatory expectations, and defend customer trust.

See Program's Benefits

See All Events

We actively contribute to and participate in the cybersecurity community. Come see us at an upcoming industry event or tune into one of our speaking gigs, past or present!

Conferences

Technical Briefings

Virtual Sessions

Workshops & Training

Executive Briefings

Community Events

Featured Session

FPO Image

Red Teaming: Is your security program ready for the ultimate test?

Learn why traditional penetration testing fails on LLMs. Join Bishop Fox’s Brian D. for a deep dive into adversarial prompt exploitation, social engineering, and real-world AI security techniques. Rethink how you test and secure today’s most powerful models.

See All Resources

Explore offensive security resources, from detailed reports and step-by-step guides to expert-led webcasts and live sessions, all designed to keep you informed and ahead.

Blog

Customer Stories

Bishop Fox Labs

Initial Access Podcast

Open-Source Tools

Workshops & Training

Cybersecurity Style Guide

Featured Report

gigaom leader attack surface management radar 2026

Bishop Fox Named Leader & Fast Mover in the 2026 GigaOm Radar!

Get an overview of the Attack Surface Management (ASM) market — and learn why Bishop Fox was named a leader and Fast Mover by the analysts at GigaOm.

Company Overview

We’ve been in the offensive security space for almost two decades, and we’re proud to be home to the innovators, engineers, and exploit writers behind some of the most widely used and respected security tools, techniques, and research in the industry.

Customers

Partner Program

• Become a Partner

• Partner Assessment

Contact Us

Newsroom

Career Opportunities

Educational Programs

We’re Hiring

FPO Image

Want to Work with the Best Minds in Offensive Security?

Hack the Planet. Have Fun Doing It. Be part of an elite team and work on projects that have a real impact.

Explore Openings

Services

Services Overview

PLATFORM

Events

Resources

About

Cybersecurity Research and Development

Bishop Fox Labs

Collaborative Analysis. Real-World Impact.

At Bishop Fox, we don’t just talk about advancing security, we make it happen. We put out the tools, research, and insights that push boundaries so defenders everywhere can move faster and protect what matters.

Driven by Mission & Vision

We're Committed to Openly Sharing Information

VULNERABILITY INTELLIGENCE

Hear from our security experts on the latest happenings in the news from regulation updates to hacks around the world.

Watch Briefs

OPEN-SOURCE TOOLS

Augment your capabilities with an arsenal of tools and cutting-edge research, developed by Bishop Fox's seasoned experts.

Access Tools

TRAINING & WORKSHOPS

Watch our training sessions and workshops to expand your education and give you a leg-up against threat actors.

Watch Sessions

SECURITY ADVISORIES

Dive into the latest security bulletins and advisories encapsulating insights into the rapidly evolving cybersecurity landscape.

See All Advisories

TECHNICAL BLOG

Learn how we break, build, and defend in the world of offensive security. Here, our researchers dive into real-world vulnerabilities, tool chains, and advanced security techniques.

Access Technical Blog

GUIDES & REPORTS

Whether you’re preparing for a security audit, evaluating threat models, or seeking data to inform board-level decisions, you’ll find reports and guides you can rely on.

Access Resource Center

A Hacker's Tool Kit

Try Popular Tools from Bishop Fox

Red Team Framework

Sliver

Dark black background with colored lines in tones of red, grey, and teal and white with lines of code superimposed.

Sliver is a cross-platform general purpose implant framework designed to be an open-source alternative to Cobalt Strike. It supports asymmetrically encrypted C2 over DNS, HTTP, HTTPS, and Mutual TLS.

A command line tool

CloudFox

Dark black background with colored lines with tones of red, grey, teal and white.

CloudFox helps penetration testers and other offensive security professionals find exploitable attack paths in cloud infrastructure. It currently supports AWS.

ATTACK TOOL FOR LLM

Broken Hill

Black background with colored thin lines for related security resources display.

Broken Hill is a productionized Greedy Coordinate Gradient (CGC) attack tool for use against large language models.

Get Broken Hill

Auditing of OpenAPI definition files

Swagger Jacker

Black background with colored thin lines for related security resources display.

Swagger Jacker is an audit tool designed to improve inspection of unintentionally exposed OpenAPI definition files.

Get Swagger Jacker

News Insights

Expert-driven Insights into the Latest Happenings

Demystifying 5G Security: Understanding the Registration Protocol

Dark black background with colored lines with tones of red, grey, teal and white.

5G networks face critical security gaps during device registration. Despite improved architecture, unprotected initial messages and weak encryption negotiation create attack windows. Learn how to identify and mitigate these vulnerabilities.

Vulnerability Discovery with LLM-Powered Patch Diffing

Dark black background with colored lines with tones of red, grey, teal and white.

Read our most recent research to see how LLMs can assist in scaling patch diffing workflows, saving valuable time in a crucial race against attackers.

Next-Level Fingerprinting: Tools, Logic, and Tactics

Black background with colored thin lines for related security resources display.

Explore how combining AI-assisted research with real-world data and signature normalization can significantly improve fingerprinting capabilities.

You’re Pen Testing AI Wrong: Why Prompt Engineering Isn’t Enough

Resource card image 0de0e3dfeba3 blog defcon 30 recap dark

Conventional pen testing methods fall short with LLMs. Static prompt tests miss adversarial context manipulation and latent model behaviors. Explore how to test AI systems like an attacker.

Sitecore Experience Platform Vulnerabilities V10.1 to 10.3

Dark black background with thin red and grey colored lines.

Critical vulnerabilities in Sitecore Experience Platform versions 10.1–10.3 could allow unauthenticated attackers to gain full system access through a simple exploit chain. Learn what’s at risk—and how to defend against it.

Responsible Disclosure Program

Security Bulletins & Advisories

UNAUTHORIZED ACCESS VULNERABILITY

YoSmart YoLink Hub version 0382

Dark black background with colored lines in tones of red, grey, and teal and white with lines of code superimposed.

Bishop Fox staff identified three vulnerabilities in the YoSmart YoLink Hub version 0382. The most severe vulnerability was an authorization controls issue that could enable an attacker to interact with other YoSmart users’ smart home devices.

DENIAL-OF-SERVICE VULNERABILITY

SonicWall Sonicos Versions 7.1.x and 8.0.x

Dark black background with colored lines with tones of red, grey, teal and white.

Bishop Fox staff identified a vulnerability in SonicWall that allowed them to cause an affected NSv virtual appliance to reboot by sending unauthenticated requests to specific API endpoints, resulting in a denial-of-service condition.

INSUFFICIENT AUTHORIZATION CONTROL

Traeger Grill D2 Wi-Fi Controller, Version 2.02.04

Black background with colored thin lines for related security resources display.

Two vulnerabilities and two informational issues were identified that affected the Traeger Grill Wi-Fi Controller: Insufficient Authorization Controls Sensitive Information Disclosure Unencrypted Firmware Exposed Debug Ports

Cross-Site Scripting (XSS)

ExpressionEngine, Version 7.3.15

Dark black background with thin red and grey colored lines.

Bishop Fox staff identified two vulnerabilities in Packet Tide’s ExpressionEngine version 7.3.15. The most severe issue allowed Bishop Fox staff to obtain access to a new administrator account in an instance of ExpressionEngine.

Out-Of-Bounds Memory Read

OOB Memory Read: Netscaler ADC and Gateway

Black background with colored thin lines for related security resources display.

The vulnerability would enable an unauthenticated attacker to remotely obtain information from a NetScaler appliance configured as a Gateway or AAA virtual server. While similar in nature to CVE-2023-4966, this issue is much less likely to return highly sensitive information to an attacker.

Footer cta bg

Ready to Get Started in Offensive Security?
Let's Connect.

Tell us your offensive security goals. We’ll help you find the right solution and be a trusted partner every step along the way.

LET'S GO

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.