stratsec

 At stratsec we provide application and infrastructure level penetration testing services.  We also support the compliance requirements of companies with internal penetration testing teams by auditing the processes followed against industry best practice.

The stratsec penetration testing team provides the full range of penetration testing and vulnerability assessment services to simulate a malicious attacker, while providing specific management and quality assurance processes to ensure the process and any impact is controlled and managed.  As our senior technical personnel are qualified software engineers as well as IT security professionals, we are able to provide a level of specialisation and differentiation in the testing of security for non-standard systems including: legacy systems, midrange/mainframe integration, proprietary protocols/encoding, thick and thin client systems, and other system types where automated testing is not possible.

stratsec has a proven track record in penetration testing, providing these services to more than half of the 20 largest listed companies in Australia, as well as local, state and federal government agencies.  Our penetration testing team is internationally recognised, with stratsec penetration testers presenting at industry conferences including: RUXCON, OWASP and AusCERT (Australia); BlueHat (Microsoft, USA); EUSecWest (UK); Power of Community (Korea); and XCon (China).  stratsec is not committed to products from any one vendor, but rather uses 'best of breed' tools - the same tools a true attacker would use. When required, our technical staff can develop custom exploit code in an attempt to thoroughly test the security standing of a system.

Contact us if you are seeking to test the security of your web application, critical internal system, legacy or SCADA system, or network infrastructure environment.

For more information contact our penetration testing leader:

Nick Ellsmore CTO stratsec P: +61 2 6260 8878 M: + 61 4 1451 9510 E: nick.ellsmore@stratsec.net