Security Services

Our Security Assessments References

Due to the nature of the information we are exposed to, and the confidentiality agreements we adhere to, we are unable to share customer names. However, the dashboard and list below highlight the industries and scope of some of our Social Engineering, Mobile, Web Application, and Network Penetration Test engagements, each varying in scope and complexity, from handful of information assets to hundreds per project.

Penetration Testing & Social Engineering Engagement Statistics

449

Web Apps

9137

Assets

102

Mobile Apps

48

WLANs

11230

Humans

Engagements since 2017:

  • Oil and Gas Services Company
    2018

    Web app and Network Pentest for several assets that are reachable via the Internet.


  • Multinational Insurance Company
    2018

    Web Application Penetration Test of a chatbot.


  • Online Retail Company
    2018

    Penetration Test of an online shop.


  • Healthcare Company
    2018

    Blackbox Web Application Penetration Test of an application supporting our customer s business.


  • Water & Energy Provider
    2018

    Major Security Assessment including multiple engagement such as Vulnerability Assessment, Penetration Testing of information assets, wireless networks, and web application, Social Engineering with USB drop and phishing emails, ICS Security Assessment, and more.


  • Software Development Company
    2018

    Greybox Web App Penetration Testing of the Board Portal application allowing their clients the governance of large and mid-sized corporations providing a useful and elegant interface for the portal.


  • Hospital
    2018

    Vulnerability Assessment and Penetration Test of our customer's public IP range.


  • Multinational Pharmaceutical Company
    2018

    Internal Vulnerability Assessment of our customer's server zone.


  • Internet Service Provider
    2018

    Greybox Web Application Penetration Test of a loyalty program application.


  • University
    2018

    Vulnerability Assessment of several critical information assets.


  • Electric Utility Company
    2018

    Blackbox Web App Penetration Test of a informational portal which allows visitors to view electricity plans, promotions, and sign up.


  • Electric Utility Company
    2018

    Greybox Web Application Penetration Test for a business-critical application.


  • Hospital
    2018

    Wireless Network Penetration Test of our customer WiFi infrastructure used by staff members and doctors.


  • Software Development Company
    2018

    Secure Code Review of three business critical web applications.


  • Software Development Company
    2018

    Penetration Test of a payment management system.


  • Electricity Distributor & Regulator
    2018

    Web Application Penetration Test of height sensitive web applications as well as a Vulnerability Assessment of 300+ internal assets.


  • Energy Provider
    2018

    Web Application Penetration Test of a customer portal.


  • Healthcare Company
    2018

    Web Application Penetration Test of a web portal for employers who manage their company's health care and which allows them to customise both the in-patient and out-patient components.


  • Multinational Insurance Company
    2018

    Internal and external Vulnerability Assessment and Penetration Testing (VAPT) targeting several assets.


  • International Fashion Retail Company
    2018

    Large scale internal Network Penetration Test of multiple subnets as well as external Network Penetration Test of our customer's public IP address range.


  • Energy Provider
    2018

    Web Application Penetration Test of an informational portal.


  • Human Resource Consulting Company
    2018

    Greybox Web App Penetration Test of an HRM application.


  • Information Technology and Services Company
    2018

    Web Application Penetration Testing of a document management system.


  • Banking Company
    2018

    Vulnerability Assessment and Penetration Test of several information assets exposed to the internet and reachable from our customer's network.


  • Hospital
    2018

    Social Engineering Assessment using various phishing emails techniques such as website mirroring and email attachments for 800 users


  • University
    2018

    Web Application Penetration Test of a web app allowing users to browse and buy scientific equipment.


  • Investment Fund
    2018

    Penetration Test of an internal application used to visualise and track financial transactions between our customer and a central bank.


  • Human Resource Consulting Company
    2018

    Blackbox Web App Penetration Test of an HRM application.


  • Global Maritime Industry Group
    2018

    Network Penetration Test of the information assets and services hosted in cargo ship and merchant vessels.


  • Insurance Company
    2018

    Web Application Testing for an insurance policies management portal.


  • Emergency and Crisis Management
    2018

    Penetration Test of an application used for collaboration among teams and provide modules such as auditing and quality, document management, customer relation management, messaging, etc.


  • Software Development Company
    2018

    Greybox Pentest of a Citrix VDI infrastructure which consisted in escaping the restricted environment, escalating privileges, and discovering what an attacker can do in the network.


  • Information Technology and Services Company
    2018

    Major Security Assessment which included a Network Penetration Test of our customer's public IP range, a network architecture review of their cloud service, and a post-compromise assessment which consisted in testing what could be done by an attacker once in the network.


  • University
    2018

    Quarterly Vulnerability Assessment of 300+ assets split across 7 campuses.


  • International Insurance Company
    2018

    Web and Mobile App Penetration Test across Asia-Pacific region for 50+ critical applications hosting that are highly critical for our customer's daily business and that host sensitive information.


  • Shipping Management Service Provider
    2018

    Network Penetration Test of our customer's public IP range.


  • Software Development Company
    2018

    Web Application Penetration Test by following a greybox approach of an application which allows user and customers to manage courses and programmes that are hosted by a University.


  • Energy Provider
    2018

    Network Vulnerability Assessment and Penetration Testing (VAPT) of critical servers.


  • University
    2018

    Web App Pentest for two applications hosting personal data as well as a large-scale Network Penetration Testing for all external and internal information assets.


  • Fashion Designer and Manufacturer
    2018

    Greybox Web Application Penetration Testing of an app used for product warranty and return merchandise authorisation management.


  • University
    2018

    Penetration Test following a greybox approach of a web app used by post graduates.


  • Software Development Company
    2018

    Web App Testing of a learning management system (LMS).


  • Insurance Company
    2018

    Blackbox and Greybox Application Pentest for four web apps that are essential for our customers daily business.


  • Multinational Insurance Company
    2018

    Security Assessment comprised of a internal Blackbox Network Penetration and an Advanced Penetration Test of a Virtual Desktop Infrastructure (VDI) aiming at escaping a restricted environment and discovering what a malicious insider could potentially do.


  • Commercial Bank
    2018

    Penetration Testing of three AS400 servers.


  • Internet Service Provider
    2018

    Major Security Assessment project including Web Application Penetration Test for several externally reachable apps, Network Penetration Testing for critical assets, and topology analysis oriented security of a voice over IP environment.


  • Hospital
    2018

    Vulnerability Assessment of all the information assets connected to the hospital's network as well as Wireless Network Penetration Test of several WLANs used by doctors, staff, patients and IoT devices.


  • Insurance Company
    2018

    Web Application Penetration Test of an app that enables customers to find out more about our customer's financials offerings, from banking to insurance. Detailing all different options of services, available in the German, French, and Italian languages, the application allows users to select the best service to suit their needs, contact our customer, and know more about the company as a whole.


  • Ophthalmic Optics Manufacturer
    2018

    Penetration Test of a web application used by our customer's end-users to place order for lenses and frames. The application is also used by administrators for real-time order verification.


  • Law Academy Organization
    2018

    Blackbox Web App Pentest of a portal to showcase laws of different countries and foster judicial cooperation.


  • Maritime Transport Organization
    2018

    Pentest of two web apps as well as an external Network Penetration Test of multiple hosts.


  • Internet Service Provider
    2018

    Wireless Network Penetration Testing of a city-wide WLAN.


  • Private Bank
    2018

    External Network Pentest of multiple servers exposed to the Internet.


  • Card Manufacturer
    2018

    Internal Network Penetration Test of multiple business critical servers.


  • International Airport
    2018

    Web Application Penetration Test through web browser and mobile apps of a rewards program app. Host Configuration Review against CIS Benchmark and Internal Network Penetration Test of all intranet facing information assets supporting a Fraud Detection Solution.


  • Major Swiss Retail Company
    2018

    Advanced Penetration Test of all internet facing information assets, such as eCommerce/eShop web app, ERP system, file sharing services, VPN gateway, Email infrastructure, etc.


  • Hospital
    2018

    Wireless Network Penetration Test of a hospital s wireless infrastructure used by doctors, patient, and IoT devices.


  • Internet Service Provider (ISP)
    2018

    Network Penetration Test of various internet facing information assets.


  • Medical Laboratory Company
    2018

    Blackbox Penetration Test of a web API.


  • Software Development Company
    2018

    Greybox Web Application Penetration Test of a web app used by plastic surgeons and patients.


  • Healthcare Company
    2018

    Web Application Penetration Test of an application that optimizes specialty pharmacy operations, patient management, and prescription workflows.


  • Law Academy Organization
    2018

    Greybox Web Application Penetration Test for a human resource web application.


  • Large Internet Service Provider (ISP)
    2018

    Vulnerability Assessment of multiple information assets owned by several business units.


  • University
    2018

    Vulnerability Assessment of 300+ servers and network device information assets spread over 9 campuses.


  • Real Estate and Hospitality Management Company
    2018

    Penetration Test of internal networks, wireless infrastructure, and information assets exposed to the internet.


  • Internet Service Provider (ISP)
    2018

    Blackbox Web Application Penetration Test of 12 internet exposed web apps supporting our customer s business.


  • Multination Luxury Cosmetic Company
    2018

    Social Engineering Assessment with phishing emails for 6400 users.


  • Multinational Automotive Corporation
    2018

    Three email spear Phishing Assessments with website mirror /phishing website and malicious attachment for 60 users per campaign.


  • Healthcare Company
    2018

    Greybox Web App Penetration Test for five web applications supporting our customer s business.


  • Information Technology and Services Company
    2018

    Mobile Application Security Assessment for an Android and iOS app, as well as greybox Web App Penetration Test for it associated web API.


  • Law Academy Organization
    2018

    Greybox Web Application Penetration Test for a human resource web application.


  • Healthcare Company
    2017

    Mobile Application Security Assessment for an Android and iOS app, as well as blackbox Web Application Penetration Test associated with web service.


  • University
    2017

    Vulnerability Assessment of 300+ servers and network device information assets spread over 9 campuses, as well as Wireless Network Penetration Test of corporate and guest WLANs.


  • International Insurance Company
    2017

    Internal and external Network Penetration Test of more than 50 information assets.


  • Law Academy Organization
    2017

    Greybox Web Application Penetration Test of an application supporting our customer s business.


  • Health, Wellness and Fitness Company
    2017

    External Network Penetration Test of all information assets exposed to the internet for four datacenters in Singapore, Malaysia, and Indonesia.


  • Multinational Retail Company
    2017

    Web Application Penetration Test of an HR web app, as well as Network Penetration Test of all assets supporting the application.


  • Major Insurance Company
    2017

    Greybox Web Application Penetration Test for a large Swiss insurance portal.


  • Healthcare Company
    2017

    Mobile Application Security Assessment for an Android and iOS app, as well as blackbox Web Application Penetration Test associated with web service.


  • Private Banking Company
    2017

    Internal Vulnerability Assessment of 500+ information assets and internal Network Penetration Test for one Lotus Notes server.


  • Software Development Company
    2017

    Greybox Web Application Penetration Test for an HR web-based software platform.


  • Hospitality Company
    2017

    Blackbox Web Application Penetration Test for an Hotel s booking web application.


  • Private Banking Company
    2017

    External Network Penetration Test of all internet facing information assets, which included firewall appliances, internet gateways, etc., as well as internal Vulnerability Assessment of several information assets.


  • Financial Company
    2017

    Greybox Web Application Penetration Test for multiple web apps supporting our customer s payment systems.


  • Insurance Company
    2017

    Greybox Web Application Penetration Test for a large Singaporean insurance portal.


  • Central Bank / International Financial Institution
    2017

    Blackbox Web Application Penetration Test covering a new feature of our customer s public website.


  • Insurance Company
    2017

    External Network Penetration Test of 10 information assets exposed to the internet.


  • Financial Company
    2017

    External Network Penetration Test of multiple internet facing information assets.


  • Software Development Company
    2017

    Secure Code Review of a stock trading app for web and mobile platforms (Android and iOS).


  • Insurance Company
    2017

    External Network Penetration Test for multiple applications and services facing the internet.


  • International Airport
    2017

    Advanced Penetration Testing that included internal and external Network Penetration Tests, as well as Web Application Penetration Test for the entire infrastructure landscape supporting airport check-in kiosks.


  • University
    2017

    Vulnerability Assessment of 300+ servers and network devices information assets spread over 9 campuses.


  • Law Academy Organization
    2017

    Greybox Web Application Penetration Test for one web application.


  • International Airport
    2017

    Host Configuration Review against CIS Benchmark and internal Network Penetration Test of all intranet facing information assets supporting a Fraud Detection Solution.


  • Insurance Company
    2017

    Greybox Web Application Penetration Test of an insurance policy management application.


  • Polytechnic University
    2017

    Greybox Web Application Penetration Test for one web app.


  • Payroll Service Company
    2017

    Network Penetration Test of a Citrix VDI Environment.


  • Insurance Company
    2017

    External Network Penetration Test for multiple hosts, as well as greybox Web Application Penetration Test of a learning management system (LMS).


  • Software Development Company
    2017

    Blackbox Web Application Penetration Test for a Learning Management System (LMS)


  • Law Academy Organization
    2017

    Greybox Web Application Penetration Test for one app.


  • Future Commission Merchant & Broker Dealer
    2017

    Greybox Web Application Penetration Test of an eTrading WeChat miniApp.


  • Multinational Pharmaceutical Company
    2017

    Secure Code Review and greybox Web Application Penetration Test of an application hosting sensitive personal data used to manage double-blind studies.


  • Social Security & Insurance Company
    2017

    Internal and external Network Penetration Test of multiple information assets. Penetration Test of a VDI environment to simulating a malicious insider escaping restricted environment.


  • Real Estate and Hospitality Management Company
    2017

    Blackbox Web Application Penetration Test of 8 websites supporting our customer s business. Social Engineering Assessment composed of three phishing campaigns, each targeting 30 users.


  • Payroll Service Company
    2017

    Network Penetration Test of a payroll infrastructure.


  • Retail Company
    2017

    Greybox Web Application Penetration Test, including Mobile Application Security Assessment of an e-commerce platform.


  • University
    2017

    Greybox Web Application Penetration Test of five web applications hosting student information.


  • Software Development Company
    2017

    Greybox Web Application Penetration Test of a web API used by a cloud service offering accounting, invoicing and payroll management.


  • University
    2017

    Vulnerability Assessment of 300+ servers and network device information assets spread over 9 campuses.


  • Real Estate and Hospitality Management Company
    2017

    Large scale internal Network Penetration Test of multiple subnets. Operating system Configuration Review of several critical servers. Wireless Network Penetration Test of two WLANs.


  • Healthcare Company
    2017

    Secure Code Review of two applications used to provide access to health services.


  • International Insurance Company
    2017

    Greybox Web Application Penetration Test of a marine cargo insurance management application.


  • Hospital
    2017

    Wireless Network Penetration Test of a hospital s wireless infrastructure used by doctors, patients, and IoT devices.


  • Software Development Company
    2017

    Secure Code Review of a web API used by a cloud service offering accounting, invoicing and payroll management.


  • Hospital
    2017

    External Network Penetration Test of various information assets exposed to the internet.


  • Payroll Service Company
    2017

    Network Penetration Test of a human resource infrastructure.


  • Software Development Company
    2017

    Blackbox web application penetration test of a Learning Management System (LMS).


  • Private Banking Company
    2017

    External Network and Web Application Penetration Test of multiple external facing information assets and apps.


  • University
    2017

    Greybox Web Application Penetration Test of an app used by students to obtain information about campus life.


  • Healthcare Company
    2017

    Greybox Web Application Penetration Test of two applications used to provide access to health services.


    Top