      → Early Access Open · Vulnerability Assessment for Consultants
    

Vulnerability assessments and pen tests, structured from day one.

Go from signed contract to first vulnerability scan in 48 hours, not 3 weeks. AssessKit collects network topology, existing controls, and compliance scope through a guided client portal — then auto-maps everything to CIS Controls v8 with a gap analysis ready before you touch a scanner.

Join the waitlist for early access See how it works ↓

// cis_controls_assessment.json
cis_control_1: ✓ inventory
cis_control_4: ✓ secure config
cis_control_7: ✓ vuln mgmt
cis_control_18: ✓ pen testing
gap_analysis: 12 findings
→ baseline_report generated

Product Preview

Early preview of the AssessKit dashboard

Here's what we're building. Join the waitlist to get early access when we launch.

app.assesskit.com/dashboard

AssessKit

Dashboard

Clients

Assessments

CIS Controls

Reports

Active Clients

+3 this month

Assessments Running

2 pending review

CIS Controls Mapped

94%

+6% vs last quarter

Avg. Onboard Time

1.8 days

Down from 12 days

Weekly Activity

Mon Sun

Recent Assessments

Client	Type	Status	CIS Score	Due
Meridian Health	Full VAPT	In Progress	72%	Apr 28
TechCorp Inc.	External Pen Test	Scoping	—	May 5
Redfield Capital	Internal Scan	Complete	89%	Apr 12
Summit Logistics	Baseline Review	In Progress	61%	May 1

The problem

How many billable hours are you losing to client intake emails?

Nessus, Qualys, Rapid7 — great scanners, but they were built for in-house security teams, not consultants juggling 15 clients. None of them help you manage the pre-assessment discovery that makes or breaks your pen test scope. You're left stitching together Word docs, spreadsheets, and email threads.

Your client doesn't know their CIS Controls maturity level. They can't tell you which of the 18 control families they've implemented. You spend 3 weeks chasing this information over email before you can even scope the vulnerability assessment.

You're a penetration testing professional billing $200/hour, but your client intake process is emailing a Word document and hoping they fill in the network ranges correctly. That gap between your technical skill and your discovery workflow costs you 15 billable hours — $3,000 — per engagement.

How it works

Client completes the portal. You get a CIS-mapped baseline. Pen test scoping starts immediately.

Step 1

Send your client a guided discovery portal

White-labeled with your firm's name. Walks your client through network topology, existing security controls, compliance requirements, and asset inventory — with plain-English explanations for every question. Works even when the client contact is non-technical and doesn't know their subnet ranges.

Step 2

Responses auto-map to CIS Controls and compliance frameworks

AssessKit maps client responses to CIS Controls v8 (all 18 control families), identifies gaps, and flags areas needing vulnerability assessment or penetration testing. No manual spreadsheet mapping.

Step 3

Get a structured baseline report ready for your assessment

A structured security baseline document with gap analysis, risk prioritization, and pen test scope recommendations lands in your dashboard. Start the vulnerability assessment on day 1, not day 21.

Built for

Penetration testing and vulnerability assessment consultancies serving SMB clients

The scoping problem

Cut vulnerability assessment scoping from 3 weeks to 48 hours.

Every day spent chasing clients for network ranges and control inventories is a day you're not running the pen test. AssessKit collects everything upfront so you can scope the assessment immediately.

The compliance mapping problem

CIS Controls v8 gap analysis without the spreadsheet.

AssessKit auto-maps client responses to all 18 CIS control families. You get a gap analysis before you start, so your vulnerability assessment targets the controls that actually need testing.

Penetration testing firms Vulnerability assessment consultants vCISO advisory CIS Controls Cloud security assessment IoT vulnerability assessment

Early access · Limited spots

Be among the first to use AssessKit.

We are onboarding a small group of penetration testing and vulnerability assessment consultancies to test AssessKit before full launch. Join the waitlist — you will be the first to know when early access opens.

Free during early access

Your feedback shapes the product

No credit card required

First to know when we launch

Work email *

First name

What best describes you?

How many security assessments per month?

I agree to analytics cookies and the Privacy Policy

Book a call with the founder