HFORCE

Sign in with your work email.
We'll send a one-time code.

Code sent to .
Check your inbox.

By : Hx7 CTeam.
HFORCE
WARZONE
Workspace
⊞Overview
◇Surface0
▶Activity0
⚡Scans0
🛡️ Sentinel 📱 Social Intel
⚠Findings0
★Intel0
◷My account
◆Admin
⚙Settings
⌘K
No active scans
Notifications
Mute notification kinds for your account:

Overview

Risk index
—
Loading
Posture
Computing your security posture
Open findings 0 Targets 0 Running scans 0 —
Severity distribution
Critical0
High0
Medium0
Low0
Info0
Quick launch

Top actions

Sorted by impact · click to view
  1. Loading

Cross-target patterns

View all
Loading

Recent findings

View all
0
0
0

Surface

Asset discovery

Activity

Scans

Targets

0 selected

Configuration

Auto-refreshing every 4s

Scan presets

Recurring schedules

Multi-select scans from history below, then choose a bulk action.
0 selected

🛡️ Sentinel — 24/7 Scheduled Scanner

📱 Social Intel — Metadata Gatherer

Findings

0 selected
Pick a scan to render the attack-surface graph.

Compliance mapping

Track HackerOne / Bugcrowd submissions per finding.

Threat Intel

CVE feed

Loading…

Nuclei

Loading…

Vulns memory

Loading…

Weekly digest preview


          

EPSS — exploit prediction

Look up the Exploit Prediction Scoring System probability for one or more CVEs (comma-separated).

Credential leak — HaveIBeenPwned

Check if a domain appears in known breaches.

TLS certificate monitor

Fetch the live cert for a host, check expiry.

Typosquat hunter

Generate 1-char-edit variants of a domain and find which resolve to live IPs.

Custom Nuclei templates

Upload your own .yaml Nuclei templates (max 256 KiB). They layer on top of the 13k community templates during scans.

My account

Profile

Email— Role— Last login—

Quota · scans this month

Loading

Deleted targets

API tokens (per-user, scoped)

Tokens created here are scoped to YOUR account. Use them for automation, CI/CD, scripts. They respect your role + permissions and can be limited to specific sections and source IPs.
Scopes (none = full):

Recent events · last 100

Administration

Settings

Alert channels

Alert delivery history

Suppression rules

Stored credentials

Used for authenticated scanning

Audit log

API tokens

Bearer tokens for CI/CD pipelines. Tokens are shown only once — copy at creation.

CI gate · live test

Test the gate from your browser session against current findings.


            

Integration snippets

Add the gate to your pipeline.

curl (X-API-Token header)


            

GitHub Actions step


          

Invite user

Sections this member can access:

Edit member

Sections this member can access:

Finding

State open
Assignee
Timeline
    Comments
    ↑↓ navigate ⏎ select esc close
    ?
    Confirm
    Warzone Assistant
    Ask anything about your scans
    Hi! Ask me anything about your findings, targets, or CVE matches.

    Add scan target

    URL, hostname, or IP. Own infra + private ranges auto-rejected.

    Scan

    Schedule monitor

    Add alert channel

    Add credential

    Encrypted at rest. Replayed only against this target.

    Import OpenAPI / Swagger

    🔑 API token created

    Copy now — this is the only time it will be shown.

    
          

    Use it as: X-API-Token: <token> or Authorization: Bearer <token>

    Bounty export

    
          

    Finding