Security Audit - Penetration Testing
Assess and strengthen the security of your infrastructure
Our Methodology
Reconnaissance
Collection and analysis of information about the target infrastructure
Analysis
Identification of potential vulnerabilities
Testing
Execution of penetration tests and verification
Types of Penetration Tests
Testing Boîte Noire
Simulation of external attacks with no prior knowledge of the system
Testing Boîte Grise
Testing with partial knowledge of the infrastructure
Testing Boîte Blanche
Analysis approfondie avec accès complet aux informations système
Our Guarantees
- Detailed report
- Concrete recommendations
- Post-audit support
Our approach: rigor and certified expertise
Recognized certifications
OSCP, CRTO, CREST CRT, OSWE, our auditors are among the most highly certified in Morocco.
Executive & Technical Report
Two levels of reporting: executive committee and technical teams, with CVSS scoring and a remediation plan.
Casablanca-based support
Based in Casablanca, we operate throughout Morocco and internationally.
Audit scopes covered
Applications web & mobiles
SQL injection, XSS, IDOR, business logic, authentication, REST/GraphQL APIs.
Network infrastructure
Segmentation, firewalls, VPN, Active Directory, network protocols.
Cloud systems
AWS, Azure, GCP, IAM, S3, Key Vault and Kubernetes configurations.
Social engineering
Targeted phishing, vishing, physical intrusion testing on your premises.