en

Cybersecurity Case Studies

Industries

Pentest and Protection of Platform from DDoS

Pentest and Protection of Platform from DDoS

  • Discovered 30 vulnerabilities in two web applications
  • Implemented DataGuard and Cloudflare for DDoS protection
Services:
Black-box web app pentesting, implementation of Dataguard
Jul 8, 2025
Pentesting of Mobile App and Internal Network

Pentesting of Mobile App and Internal Network

  • Critical, medium, and low vulnerabilities were identified
  • Risks were demonstrated through public Wi-Fi access
Services:
Mobile app pentesting, infrastructure pentesting
 
Mar 7, 2025
Case Study UNIQA Insurance: Cybersecurity Testing of the Insurance Company’s iOS App

Case Study UNIQA Insurance: Cybersecurity Testing of the Insurance Company’s iOS App

  • Conducted a Gray-box penetration test of the iOS app
  • Audited critical components: API, authentication, and integrations
Services:
Mobile app (iOS) penetration testing, authentication analysis, API review, network traffic inspection, and integration testing.
Dec 20, 2024
Case Study HUSPI: Security Assessment of Frontend and Backend Servers in Docker Containers

Case Study HUSPI: Security Assessment of Frontend and Backend Servers in Docker Containers

  • Conducted a white-box penetration test of servers and Docker containers
  • Reduced the risk of data leaks through inter-container interaction by 80–90%
Services:
Comprehensive white-box penetration testing of two servers (frontend and backend) in Docker, including a full assessment of containerized environments and network interactions.
Jan 17, 2025
Case Study: Comprehensive Security Assessment for a Large Financial Institution

Case Study: Comprehensive Security Assessment for a Large Financial Institution

  • Pentest and Code Review were conducted for digital services
  • 106 vulnerabilities were identified, including a DoS attack threat targeting the call center.
Services:
Security Code Review, Penetration Testing (Black-box and Gray-box) of web portals, mobile applications, APIs, POS terminals, and parts of the internal network;
Jan 31, 2025
Case Study HIDEEZ: Security Testing of Encryption and Authentication Before Product Release

Case Study HIDEEZ: Security Testing of Encryption and Authentication Before Product Release

  • Conducted a white-box pentest of cryptography and authentication mechanisms
  • Identified 6 vulnerabilities: 1 critical, 2 medium, 3 low
Services:
White-box penetration testing with source code analysis of encryption and authentication modules; static code analysis (SAST) and dynamic application security testing (DAST), aligned with OWASP ASVS best practices
Feb 14, 2025
Case Study: Andromeda Systems – Mobile App Pentest with Reverse Engineering

Case Study: Andromeda Systems – Mobile App Pentest with Reverse Engineering

  • Conducted a grey-box app pentest using SAST, DAST, and reverse engineering
  • Identified critical vulnerabilities that could have led to data leaks; improved resilience to attacks
Services:
reverse engineering, full grey-box pentest using SAST, DAST
Feb 28, 2025
Case Study: Consulting Company – Security Testing of Web Resources and Infrastructure

Case Study: Consulting Company – Security Testing of Web Resources and Infrastructure

  • Conducted black-box pentest of two web resources and infrastructure components
  • Identified 19 vulnerabilities: 1 critical, 8 medium, 7 low, and 3 informational
Services:
Black-box pentest of two web resources with different domain zones (UA and UK), and assessment of related infrastructure components
Jun 6, 2025
BookingSync Case Study: API Pentest for Personal Data Protection

BookingSync Case Study: API Pentest for Personal Data Protection

  • Conducted a gray-box pentest of API endpoints
  • Identified several low-level vulnerabilities
Services:
Gray-box API pentest using Burp Suite API Scan and manual testing methods
Mar 28, 2025
Order a free consultation
We value your privacy
We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies. Cookie policy