Penetration Testing

Ethical hacking before someone else does — web, mobile, API, AI/LLM, and OT/ICS, with specialisation in regulated sectors.

Scope of testing

We conduct tests across the full spectrum of environments — from web applications to industrial infrastructure.

Web applications

Testing in accordance with OWASP ASVS 4.0 and OWASP Top 10. SQL injection, XSS, CSRF, SSRF, path traversal, broken auth, insecure deserialization. SAST + DAST.

WEB

Mobile applications

Android and iOS — static analysis (APK/IPA), dynamic analysis, network communication, data storage, authentication and authorisation flaws. OWASP Mobile Top 10.

MOBILE

Network & cloud

Port scanning, segmentation, firewall, service testing (SMB/RDP/SSH/VPN). AWS, Azure, GCP — IAM misconfigurations, S3 exposure, excessive permissions. Internal and external perspectives, CSPM.

NETWORK + CLOUD

OT / ICS

Industrial systems and critical infrastructure. IT/OT separation assessment, protocol analysis (Modbus, PROFINET, DNP3), access policy verification. Zero-downtime safety protocol.

OT/ICS

APIs and microservices

REST, GraphQL, gRPC — broken object level auth (BOLA/IDOR), mass assignment, excessive data exposure, missing rate limits, improper validation. OWASP API Security Top 10.

API

AI / LLM

LLM application testing for regulated sectors — finance, healthcare, and critical infrastructure. Prompt injection, jailbreaks, data exfiltration aligned with OWASP Top 10 for LLM Applications.

AI/LLM

Methodology

A transparent, structured process — from the initial brief to the final report with a remediation plan.

Scope and authorisation

Defining the test scope, time windows and objectives. Signing of NDA and Rules of Engagement. Written authorisation from the system owner.

Attack surface mapping

OSINT, technology fingerprinting, asset mapping, subdomain enumeration, verification of data exposure in public sources.

Exploitation and analysis

OWASP ASVS 4.0, CVSS 4.0, PTES, OSSTMM. Real-time reporting of critical vulnerabilities. Full documentation of attack paths and PoC.

Report and retest

Technical report with CVSS score, PoC and remediation recommendations + executive summary for management. Retest of critical vulnerabilities included in the project.

OWASP ASVS 4.0OWASP API SecurityOWASP MASVSOWASP Top 10 for LLMCVSS 4.0PTESNIST SP 800-115OSSTMMSASTDASTOSINT

What the report includes

Two documents tailored for different audiences — management and the technical team.

Technical report

Full description of each vulnerability: CVSS 4.0 score, CWE/OWASP classification, proof of exploitation (PoC), attack path, business impact, and prioritised remediation recommendations.

FOR IT TEAMS

Executive summary

An accessible summary for leadership: overall risk rating, vulnerability breakdown by severity, key findings and a remediation roadmap — free of technical jargon.

FOR MANAGEMENT

Fix retest

Retesting of critical and high-severity vulnerabilities is included as standard. We verify the effectiveness of applied remediations and issue a remediation confirmation certificate.

INCLUDED IN PROJECT

Frequently asked questions

For a standard web application, the testing scope typically takes 5–10 business days. The exact duration depends on complexity and the agreed scope. A schedule is established individually before the contract is signed.
No. All tests are conducted in a safe manner with no required downtime. For OT environments, a separate safety protocol is applied and agreed in advance with the operator.
Before each engagement we sign an NDA, a Rules of Engagement document, and a defined test scope. For critical infrastructure, written authorisation from the system owner is required.
Yes. We offer technical consultations, fix retesting and support for development teams. Retesting of critical vulnerabilities is included as standard in the project.

Ready for a test?

The first consultation is free of charge. We respond within one business day.

Schedule a consultation