Bishop Fox named “Leader” in 2024 GigaOm Radar for Attack Surface Management. Read the Report ›

Offensive Tools

Eyeballer: Give those screenshots of yours a quick eyeballing.

Eyeballer is an AI-powered, open source tool designed to help penetration testers assess large-scale external perimeters.

About Eyeballer

Our award-winning tool leverages a convolutional neural network for analyzing pen test screenshots.

Eyeballer is meant for large-scope network penetration tests where you need to find "interesting" targets from a huge set of web-based hosts. Go ahead and use your favorite screenshotting tool like normal (EyeWitness or GoWitness) and then run them through Eyeballer to tell you what's likely to contain vulnerabilities, and what isn't.

With Eyeballer Penetration Testers can:

  • Assess a repository of screenshots for indications of potential vulnerabilities.
  • Supplement automated scanning methods to close gaps in coverage.
  • Gauge targeted external perimeters, big or small.
  • Focus manual review efforts.
  • Improve testing times and accuracy.

Eyeballer was named 2019 “Web Filtering and Control Solution of the Year” by CyberSecurity Breakthrough, a leading independent market intelligence organization that recognizes the top companies, technologies, and products in the global information security market.

Bishop Fox Labs Resaerchers Dan Petro Gavin Stroy Headshots

Lead Researchers

Dan Petro & Gavin Stroy

Dan Petro is a Lead Researcher at Bishop Fox and focuses on application penetration testing, product security reviews, network penetration testing, and cryptographic analysis. Dan has presented at several Black Hats and DEF CONs on topics such as hacking smart safes, hijacking Google Chromecasts, and weaponizing AI. He has developed several open-source tools including Untwister, which breaks pseudorandom number generators. GitHub: dan-bishopfox.

Gavin Stroy (CCNP) is a Senior Security Analyst at Bishop Fox, where he focuses on application assessments and network penetration testing. Gavin is an active member of the security research community and has published an article on Network Based File Carving in eForensics Magazine. He has spoken on the topic of machine learning at DEFCON and has presented the AI tool Eyeballer at Black Hat USA. GitHub: bfstroy.

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.