Dashboard Features¶
The BeDefended dashboard exposes a set of features that extend the penetration testing workflow beyond the core 6-phase methodology. Each feature operates independently but integrates with the others through shared engagement data.
Feature Map¶
| Feature | What it does | Related features |
|---|---|---|
| Compliance Mapping | Maps findings to regulatory frameworks (PCI-DSS, SOC2, GDPR, ...) | Remediation Generator, Webhooks |
| Webhooks & SIEM | Real-time notifications to Slack, Teams, Splunk, syslog | Continuous Monitoring, Surface Drift |
| Confidence Calibration | FP/TP feedback loop that learns per vuln type and tech stack | Learning Loop |
| Surface Drift Detection | Snapshot and diff the attack surface between engagements | Continuous Monitoring, Webhooks |
| Continuous Monitoring | Cron-scheduled periodic re-scans with change alerts | Surface Drift, Webhooks |
| Learning Loop | Extracts successful techniques and recommends payloads | Confidence Calibration |
| Remediation Generator | Produces framework-specific fix code for each finding | Compliance Mapping |
| Team Collaboration | Multi-pentester skill assignments with conflict detection | Cost & ROI |
| Cost & ROI | Pre-engagement estimates and post-engagement efficiency metrics | Team Collaboration |
How features connect¶
graph LR
E[Engagement] --> F[Findings]
F --> CM[Compliance Mapping]
F --> CC[Confidence Calibration]
F --> RG[Remediation Generator]
F --> LL[Learning Loop]
E --> SD[Surface Drift]
SD --> MO[Continuous Monitoring]
MO --> WH[Webhooks & SIEM]
CM --> WH
E --> TC[Team Collaboration]
TC --> CR[Cost & ROI]
CC --> LLEvery feature reads from engagement data on disk (context.json, FINDING-*.md) and persists its own state in the dashboard database. No feature requires another to function, but the connections above show where one feature's output enriches another.
Access control¶
All feature endpoints require authentication. Role requirements:
| Role | Access |
|---|---|
admin |
All features |
pentester |
All features except Webhooks |
viewer |
Read-only on reports and compliance exports |
Webhooks are admin-only because misconfigured webhooks can leak finding data to external systems.