penetration testing · by surface

Pentest, scoped to your surface.

Each surface gets its own deep methodology. Choose the test type that matches your stack, or the compliance framework your auditor expects.

01. by surface

Six surfaces.

Manual exploitation against the agreed scope, with working PoCs and retest included.

Single-page apps, server-rendered apps, admin consoles. Authentication, authorization, business logic, file uploads. OWASP WSTG aligned.

Broken object-level authorization, mass assignment, batched query abuse, schema introspection, rate-limit bypass. OWASP API Top 10 aligned.

Static analysis, Frida instrumentation, certificate pinning, secrets in storage, IPC abuse, biometric bypass. OWASP MASVS aligned.

External perimeter, internal lateral movement, Active Directory, ADCS, kerberoasting, segmentation. PTES + OSSTMM.

IAM blast radius, exposed object storage, metadata-service abuse via SSRF, cross-account chains, control-plane logging gaps.

Firmware extraction, hardware interfaces (JTAG/UART/SPI), radio protocols (BLE/Zigbee), companion app, cloud backend.

02. by framework

Named methodology, CVSS severity mapping, retest evidence, and a signed attestation letter in the format auditors accept.

A 30-minute call gets you a fixed-fee proposal in writing. No NDA needed for the first call.