Worried about security?
We know the feeling.

Our team of security experts will plan and execute controlled attacks and partner up with you in an effort to identify, mitigate and remediate security vulnerabilities.

WHY KULKAN

The Kulkan way.

Detailed testing plans

Planning is one of our strengths. Project plans get updated by our team daily and shared with your team weekly.

Excellent communication skills

We believe in building strong partnerships, and rely on our ability to communicate our value to make it happen.

Kulkan App Footprint

Our App Footprint methodology enables us to preserve key context/information in between rounds of testing.

Adaptable testing

We're prepared and ready to test Production / Sensitive environments, although we rather test against non-Prod.
OUR PROCESS

A simple four step engaging process.

Scoping and Scheduling

We can help estimate and define the scope of work. We’ll prepare and share a work proposal document. Slots in our schedule are only locked once a work proposal is approved and signed.

Execution

We’ll create a Kulkan Footprint of your APIs. We’ll establish a bridge between both parties and share detailed weekly updates.

Delivery

We’ll share with your team a report in multiple formats via our proprietary secure file transfer method. Our team will then preserve context and new knowledge to seal the Kulkan Footprint of your APIs.

Retesting

We can help you validate fixes to any of the findings that we’ve reported. Talk to us in order to schedule either a subsequent round of testing or an isolated project for validating fixes.

INTEGRATIONS

We are ready to integrate with:

A ticketing system of your preference
(eg. JIRA, RALLY, GIT)

In addition to, or in replacement of the report deliverable our team can submit findings to Rally, JIRA, Github, and more.

Your favorite chat platform
(eg. Slack, Telegram, Signal)

We welcome communication and therefore our team will be happy to jump on a shared channel or authenticate to your infrastructure.

DELIVERABLES

A flexible vessel for communicating risk.

Please discuss your reporting needs upfront if you’re looking for a specific type of Report.
We’ll be happy to try our best!

PDF / EXCEL

Our report documents include details on each threat, their impact on your infrastructure and recommendations. We Also include an excel-friendly version of the report, to ease parsing and importing.

CVSS

Findings are assigned a CVSS score based on actual exploitation context, meant to help your team strategize a mitigation plan.

Security

Our secure report delivery platform will help us deliver all of the sensitive data securely to you.

CREST

We are CREST Accredited in Penetration Testing

Working with professional, experienced security consultants and penetration testers who are awarded the CREST accreditation, grants your company a level of independent assurance over the services being delivered.

What is CREST?

CREST is the international not-for-profit accreditation and certification body that represents and supports the technical information security market. CREST provides internationally recognised accreditations for organisations and professional level certifications for individuals providing vulnerability assessment, penetration testing, cyber incident response, threat intelligence services, and Security Operations Centre (SOC) services.

CUSTOMERS

Helping CISOs sleep better at night. Happy customers include:

HIRE US

Ready to get started? We look forward to hearing from you.


Our website and this form are NOT in scope for the Ekoparty CTF.


LinkedinTwitter