BX

Cyber Ecosystem

BreachPointXi

Own the engagement.

Overview

BreachPointXi is the platform pentesters actually run their engagements from — client scoping, a live in-browser toolkit, a findings tracker with CVSS scoring, and one-click reporting, all self-hosted for teams that can't put engagement data in someone else's cloud.

Features

  • Engagement management: client, scope, status, activity log
  • Live in-browser toolkit — 35 commands across recon, web, SMB, DNS and brute-force
  • Findings tracker with CVSS v3.1 calculator, CVE linkage and evidence attachments
  • Retest / remediation tracking with a percent-remediated dashboard metric
  • Scheduled recurring scans with change-diffing (new/gone hosts, port changes)
  • One-click PDF report generation with executive summary

Capabilities

  • Nmap XML and Nessus (.nessus) import
  • Credential vault (hashes, cleartext, SSH keys) and C2 session logging
  • Fail-closed CIDR scope allowlist enforced on every scan
  • Enforced TOTP MFA on every account
  • Four-tier RBAC: admin, operator, analyst, read-only

Benefits

  • Air-gapped, self-hosted deployment for defence and regulated engagements
  • One record of an engagement from scope to signed-off report
  • Scheduled diffing catches new exposure between engagements, not just during them

How it links to other apps

BreachPointXi runs standalone today — its findings are a natural future feed into Synapse-NetscanXi's asset risk scoring and Synapse-Cortex remediation tickets.

No documents uploaded yet.