ScopeSentry

ScopeSentry is a web app (with a lightweight desktop agent) that enforces penetration-test scope in real time. Teams import a signed Rules of Engagement (IPs, domains, time windows, allowed techniques, rate limits, exclusions). The desktop agent watches tool activity (common scanners, browsers, proxy traffic, terminal commands) and blocks or warns when actions drift out of scope, then logs evidence for reporting. An AI assistant summarizes what was tested, flags risky behavior (e.g., scanning third-party ranges, hitting production endpoints too hard), and generates a clean audit trail for clients and legal. This is not a magic “auto-hack” product; it’s a compliance and risk-reduction layer that prevents expensive mistakes, reduces client friction, and standardizes documentation across consultants and internal red teams. It’s built for real-world workflows where scope changes mid-engagement and people make errors under time pressure.