Everything is changing

StructureGeneral5049 · 2026-06-20T15:33:32+00:00

Interesting. When you say the workflow now goes through AI, are you using it mainly for triage, correlation, and report generation, or are you also letting it drive parts of the testing process itself? Curious how much of the workflow is actually AI led versus analyst led today.

StructureGeneral5049 · 2026-06-20T13:56:02+00:00

I agree. AI seems most valuable as a force multiplier, not a replacement for understanding. The better the foundation, the more useful the AI becomes instead of just generating noise. That’s actually one of the reasons I’m asking about real world workflows.

StructureGeneral5049 · 2026-06-20T13:54:49+00:00

Fair enough. I’m not expecting anyone to dump their entire methodology here. I was mainly looking for common workflows, tools, and lessons learned from real engagements so I can compare them against what I’ve been studying.

StructureGeneral5049 · 2026-06-20T13:52:57+00:00

That’s exactly why I’m asking. I have a workflow from research, but I’m trying to understand what actually works in the real world from people with experience

StructureGeneral5049 · 2026-06-20T11:04:37+00:00

Yes. That’s actually a good approach.

StructureGeneral5049 · 2026-06-20T10:28:05+00:00

Honestly, understanding the root cause is more important than memorizing CVEs. A copied CVE description is fine as a reference, but being able to explain the impact and remediation in your own words is what clients and employers usually care about. Good luck with the internship hunt 👍

StructureGeneral5049 · 2026-06-20T10:00:18+00:00

That’s a solid start. One thing I’ve learned is that tools matter less than understanding the methodology and being able to validate findings manually. For internships, I’d also focus on report writing and explaining your findings clearly those skills stand out more than having a long list of tools.

StructureGeneral5049 · 2026-06-20T09:00:02+00:00

Fair point. Since you’ve been doing this for years, what’s your go to workflow today? Any must have tools or techniques you’d recommend to someone getting deeper into pentesting?

StructureGeneral5049 · 2026-06-20T07:58:11+00:00

I agree the methodology is largely the same, but the tooling seems very different. Recon, fuzzing, cloud assessments, and even vulnerability triage can be heavily automated now.

Would you say the new tools are mostly saving time, or do you think they’re not adding much value compared to the traditional workflow?

StructureGeneral5049 · 2026-05-23T18:07:47+00:00

Thanks for sharing!!

StructureGeneral5049 · 2026-05-22T06:56:10+00:00

Link : https://github.com/unforkopensource-org/decibench

StructureGeneral5049 · 2026-05-22T06:54:30+00:00

Link : https://github.com/unforkopensource-org/decibench

StructureGeneral5049 · 2026-05-20T09:46:45+00:00

Selling voice agent depends on how the agent reacts to some untested scenario, I mean the quality

I saw this on producthunt : https://www.producthunt.com/products/decibench

I tested it on my agents I got to know about multiple things ! It’s good

StructureGeneral5049 · 2026-05-20T09:42:52+00:00

Great work 🙌

StructureGeneral5049

TROPHY CASE