PatchPivot

PatchPivot is a web app (with optional lightweight desktop agent) that helps penetration testers and security teams answer the question executives actually care about: “Which vulnerabilities are most likely to be exploited here, this week?” Instead of generic CVSS sorting, it correlates scan findings (Nessus/OpenVAS), asset context (internet exposure, identity privileges, EDR presence), and real-world exploit signals (KEV, exploit PoCs, ransomware TTPs) to produce an exploitability-ranked patch plan. It generates a tester-friendly “attack path” view that shows how a specific missing patch could realistically lead to domain compromise, plus a remediation playbook that’s practical (maintenance windows, compensating controls, rollback notes). This is not a magic autopentest tool; it’s a prioritization and communication layer that reduces wasted effort on low-impact findings and makes pentest reports more actionable for ops teams. It also tracks remediation progress and re-test evidence for audit trails.