Hands-on guides for running, tuning, and proving detection coverage.
From signup to first run in 5 minutes
Pick a target, scan profile, and review findings
Calibrate attack_depth and compliance_tags
Wire the GitHub Action into a repo and watch the gate fire on the next PR
Copy-paste a Shields-style security badge into any README or doc site
Interpret the four verdicts and the score-vs-finding delta distinction
Walk a teammate through the accept flow and consume one seat — start to finish in 4 minutes.
Templatize an attack you already ran and add it to your tenant catalogue. Pro plan and above.
Store SAML or OIDC IdP metadata for your tenant. Enterprise plan only.
Wire a webhook subscriber so Slack or your SOC tool gets pushed every run + critical finding.
Turn a saved RunRequest into hourly / daily / weekly defense validation.
Diff scores, MITRE coverage, and finding lifecycle between two runs — replay surface for change validation.
Install once at the org level and every PR runs the PR Diff Red-Team Gate.
Download auto-emitted detection rules, import to Splunk or Elastic, and track from starter to verified.
From webhook payload to Sigma rule shipped — the exact sequence for a SOC analyst.
Turn a RunScore + compliance mapping + run comparison into a boardroom presentation.
Skip the reading — attack OWASP Juice Shop.