At PentestPad, we take great pride in the clients we work with — each one typically a deep expert in their specific technology and industry. We value the strong relationships we’ve built and make it a priority to stay connected for ongoing support and feedback, as our clients play a vital role in shaping the future of PentestPad and what it has become today.
Recently, we had the pleasure of talking to Luca Epifanio, a CEO at BitCube Security, a cyber security expert, offensive security instructor and holder of more certificates than you can remember (OSCP, eWPT, GICSP, GWAPT, CHFI).
BitCube is a cybersecurity consulting firm based in Italy. It’s composed of very talented researchers and penetration testers. Its focus is on penetration testing activities in both networking and application fields, as they stand for a research-driven approach. BitCube mostly deals with secure code development, compliance, and training.
1. What kind of clients do you typically work with?
From small and medium-sized enterprises to larger companies—nowadays, any kind of company needs cybersecurity.
2. What makes your team or approach to pentesting unique?
We focus on manual activities, on bypassing business logic, and we stand out for our researcher-driven approach.
Challenges before PentestPad
3. What were the biggest challenges you faced in managing penetration testing projects before using PentestPad?
Report writing is one of the most important parts of our work—being clear and precise is essential. It obviously takes a lot of time, so without a tool like PentestPad, writing reports becomes an activity that significantly increases the workload for the team.
4. How were you handling reporting, collaboration, or documentation before?
Internal procedures and internal templates.
Experience using PentestPad
5. How has your workflow changed since adopting PentestPad?
With PentestPad, we’ve been able to speed up our entire workflow in terms of reporting and collaboration. This not only allows us to save time and dedicate it to technical activities, but also enables us to be clearer and more precise in reporting.
6. Can you share a specific example or situation where PentestPad helped save time or reduce errors?
Our penetration testing team can use a single platform to share and report findings, working together, saving time, and increasing the accuracy of the information.
7. What kind of improvements have you seen since using PentestPad (time savings, fewer mistakes, better collaboration)?
Definitely time saved in report production, and smarter collaboration with the team.
8. Has it affected client satisfaction or turnaround time on reports?
Clients are definitely happy to receive reports on time, accurate, detailed, and always up to date.
Final Thoughts
9. What would you say to other teams considering PentestPad?
It’s definitely an essential tool for those in our line of work—once you try it, you won’t want to go back!
