Australian based penetration testing services designed to simulate real-world attacks on your organisation's IT systems, applications, and networks. Identify your gaps before the bad guys do.
External network testing simulates cyber attacks on your network from outside your company to uncover vulnerabilities before hackers can exploit them, ensuring your defences hold strong against real-world threats.
Wireless testing identifies security issues in your Wi-Fi networks, preventing unauthorised users from sneaking onto your internal network. Make sure your neighbours aren't snooping on you.
The services we provide are not just about cost, but about value. Our services offer an unmatched value proposition, combining top-tier expertise with competitive pricing. This is in line with our mission to make cybersecurity accessible to every Australian business.
Project Black consultants hold industry-recognised penetration testing certifications like the CREST CRT, Offsec's OSCP, and OSCE, so you and your customers can rest assured that testing is being performed to a high standard.
A pentest isn't a scan! Our penetration testing methodology is firmly rooted in industry best practices, including references to the Open Web Application Security Project (OWASP) Top 10, the SANS CWE Top 25, and the Penetration Testing Execution Standard (PTES).
Penetration testing is performed by Australian consultants based in Sydney and Melbourne. Your data stays down under, and you get to work with a team that gets the Aussie way of doing business, quick and smart. We're right here whenever you need us.
Attacker methodologies continuously evolve, staying ahead of the curve is paramount. Project Black invests significantly in research and development. This commitment to continuous learning and innovation ensures that the techniques and tools remain cutting edge. Check out our research blog.
Most of the penetration tests we perform fall within the range of $6,000-$10,000 depending on scope. Reach out for your quote today!
We try to size up your scope! For web applications the biggest factor for sizing is the number of dynamic pages/API endpoints. For infrastructure testing, the biggest factor for sizing is the number of active hosts.
This is a bit hard to answer on a static website! Generally we can start immediately upon approval of our proposal, give us a call to check.
Penetration tests are more comprehensive than automated scans. Human testers also have the ability to chain together a series of vulnerabilities to achieve greater impact.
It depends on your goals. White box testing will simulate an insider threat, you provide all information (e.g. source code) so time isn't wasted on enumeration. Black box is the most realistic but may result in less vulnerability findings for same money. Grey box testing balances realism and cost effectiveness.
Yes. Our testing protocols surpass the guidelines recommended by the PCI Standards Council and ISO/IEC.
Penetration testing forms an important part of a comprehensive security strategy but does not guarantee security, arguably nothing can guarantee 100% security.
We uncover your unknown unknowns! This is typically in the form of a detailed report that contains discovered vulnerabilities, their potential risks, and remediation recommendations.
Fill out the form below with your details, and we'll reach out to you on the same day to kickstart your journey.