Rank Cookbook
Platform
Esc

    Type to search the documentation.

    Web platform

    The Rank web app at aleex-rank.ai is the fastest way to run autonomous pentests, chat with AI agents and triage findings — no code required.

    What the web platform is

    The Rank web app at aleex-rank.ai is the visual home of the platform. Everything you can do over the CLI, the Python SDK or the REST API you can also do here, with a guided UI on top: launch automated and autonomous penetration tests, watch AI agents work in real time, review the vulnerabilities they surface, and manage your team, plan and budget.

    It is built for people who want to drive pentests rather than script them — security engineers triaging findings, team leads managing access and spend, and anyone who prefers to point an agent at a target and watch it work.

    Who it’s for

    • Individual users on the Casual, Pro and Ultra tiers, running pentests against their own assets.
    • Teams on Business and Enterprise tiers, who need shared workspaces, role-based access control and a pooled AI budget.
    • Triagers and reviewers who live in the vulnerability queue — resolving, disputing and assigning findings.

    You sign in with email and password; accounts can add two-factor authentication (TOTP) for an extra step at login. The browser session is backed by a short-lived JWT that refreshes transparently. For automation outside the browser, create an API token instead — see Authentication & API tokens.

    Explore the platform

    Chat

    Talk to general-purpose agents, keep persistent sessions, attach files and watch agent activity stream live.

         Running pentests

    Create a pentest, assign agents to phases, launch it and follow progress to a finished report.

         Vulnerability triage

    Review findings by severity, resolve or dispute them, attach evidence and enforce quality gates.

         Teams & RBAC

    Create teams, define roles and permissions, invite members and share agents, chats and budget.

         Scheduled pentests

    Re-run a finished pentest once, daily, weekly or monthly in your own timezone.

         Billing

    Manage plans and trials, pay through Stripe, track on-demand usage and view invoices.

    How it fits together

    The web app talks to two backends. The REST API (https://api.aleex-rank.ai/api/v2) handles all data: pentests, assets, agents, vulnerabilities, teams and billing. The streaming backend (https://aleex.aleex-rank.ai) runs the agents and pushes their activity back to the browser over Server-Sent Events. You never have to think about this split in the UI, but it explains why pentest execution and live agent timelines feel instant while your data stays consistent.

    To understand the building blocks before you start, read Pentests, assets & phases, Agents, tools & MCP and Vulnerabilities.