This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.
At Pentest, we see ourselves as more than just an information security testing provider.
We see ourselves as a trusted advisor, providing our clients with the information security confidence they need, whether that be in their applications, IT Infrastructure, IoT devices, or their organisation as a whole.
Founded in 2001, our approach, as well as our technical ability, has led us to work in partnership with organisations across the globe, helping them put their information security to the test, uncover vulnerabilities, support their improvement efforts and ultimately, deliver the information security assurances they, and their clients, require.
Pentest Services
Our services have been designed to deliver the best possible results & value for money for our clients. These services include:
Penetration Testing
Penetration testing, or pen testing as it is often called, is an in-depth investigation into the security of a specific IT network, application, cloud service, or connected device. Our CREST accredited penetration testing services are delivered by experienced security consultants and are designed to uncover as many vulnerabilities as possible within the set scope and given timeframe, manually verifying the risks, and providing detailed remediation advice.
Red Teaming (Adversary Simulation)
A red team engagement is designed to simulate a likely real-world threat, demonstrating if it is possible for an attacker to gain access to an organisation, evaluate the effectiveness of defences and assess the damage that could potentially be done once inside, typically without being detected. This type of testing goes much deeper than others, looking at the broader security posture of an organisation rather than a specific network or application.
Information Security Consultancy
Not sure which way to turn, or what the most effective route is to take when it comes to information security improvement? Our information security consultancy service has been designed to understand our client’s current position, identify the potential key risks, and provide a roadmap of improvements that will deliver immediate, cost-effective security benefits.
Our Approach
The security confidence we provide doesn’t come from a one size fits all solution. It comes from a robust approach, developed over 20 years within the information security testing industry.
In-depth scoping process
No two organisations are the same, and neither are our tests. We work closely with our clients to fully understand the environments under investigation, any security goals, and their exact requirements, before putting forward a bespoke test proposal.
Expert manual testing
Our manual testing is led by expert consultants and is designed to challenge your security. That’s why we set such high standards when it comes to recruitment and all our consultants are directly employed by us, meaning we can keep our test quality at the very highest level.
Tailored solutions
Our tailored solutions are designed to meet our client’s needs throughout the engagement, whether they require in-test notifications, ticketing system integration, a bespoke test report or full walkthrough of the issues we’ve found.
Post-test support
Our job doesn’t finish on the delivery of a report. We make our consultants available after the test report to pass on their wealth of expertise, help with the interpretation of findings & support our client’s remediation efforts.
Fix check and additional documentation
A fix check, or a full re-test, depending on the criticality of the system, can be employed to ensure issues found have been successfully remediated & additional documentation can be supplied for assurance purposes.
Ongoing partnership
We see ourselves as trusted advisors and welcome clients contacting us outside of testing, providing honest advice on information security issues wherever we can.
Certifications & Accreditations
At Pentest, we work to the highest possible standards and hold several key industry certifications, accreditations, and memberships. These include:
CREST Member Council of Registered Ethical Security Providers
ISO 9001: Quality Management Systems
ISO 27001: Information Security Management
Cyber Essentials Plus
Offensive Security Certified Professional (OSCP)
Global Hacking Competition Success
We take part in several high-profile Capture the Flag (CTF) challenges & hacking competitions each year. Not only do these give us a chance to develop our consultants’ skills, but it also allows us to test ourselves against some of the best CTF/security research teams in the world. Our success includes:
Pwn2Own Toronto 2022
Successfully compromised the Samsung Galaxy S22
Pwn2Own Miami 2022
Successfully compromised the Inductive Automation SCADA platform
Pwn2Own Austin 2021
Successfully compromised the Samsung Galaxy S21 & Western Digital NAS (PR4100)
Hack-a-Sat 2 2021
Global satellite hacking CTF competition – Top 4% finish.
Related News
Pentest win $90,000 at Pwn2Own Toronto 2023
Pentest Limited secures new contract win with a global technology business
Pentest take home $10,000 prize at Pwn2Own Tokyo 2020
Related Resources
Insights to get the best from your test
Pentest shares how to get the best possible results from your Information Security testing.
View Article
A red team doesn’t have to be complicated
Understand the misconceptions between red teaming and how it differs from penetration testing.
View Article
No shortcuts for Information Security
Security is more than a single one off solution. Read what the experts at Pentest have to say.
View Article
Social Engineering and Red Teaming
An article by Paul Harris, CEO, Pentest Ltd on best practices for including social engineering in red teaming exercises.
View Article