Frequently Asked Questions
Redbot Security is a boutique penetration testing house with a team of highly skilled U.S. Based Senior Level Engineers that specialize in providing ‘Penetration Testing Services’ for a wide range of industries. The Company delivers True Manual Penetration Testing.
To learn more about Penetration Testing Services you can visit our in-depth articles that discuss a wide range of penetration testing services, or view our Frequently Asked Questions below to find the penetration testing information you are seeking quickly.
If you have specific questions related to a penetration testing project, please reach out to us!
Redbot Security is a U.S.-based Boutique Penetration Testing company that specializes in Network and Application Testing. The company employs a small group of highly talented and experienced Sr. Level Engineers.
The first step is to contact us via our contact form and let us know what type of project you have. Once we determine scope we provide a quick cost estimate. When the estimate is approved we issue a contract and begin scheduling of your project. We are rapid in our response, delivery of estimate and scheduling
Yes, After your initial penetration test is performed, we deliver your 1st report that has proof of exploits and remediation steps to take to fix issues. Once your company remediates findings, Redbot Security will perform a retest to validate that your issues have been resolved. We then deliver a final report and client letter of attestation (if needed). All of our retesting is built-in to our pricing model.
Redbot Security can test from a remote perspective, however many times with critical system testing Redbot Security will recommend onsite testing.
Redbot Security is located in the heart of Downtown Denver at the Dominion Towers.
Redbot Security
600 17th Street, Denver, Colorado, USA.
866-4-REDBOT
Redbot Security’s Engineering Team is 100% U.S.-based, background-checked, and certified Full-time Sr. Level employees. Redbot Security does not use independent contractors, freelancers, or subcontractors.
Yes, the combined team list only certifications that are verifiable. The current team certifications are as follows:
Amazon Web Services Cloud Practitioner, CompTIA A+ CISSP, Certified Cloudera Administrator for Hadoop (CCAH), Certified Ethical Hacker (CEH), Cisco Certified Network Associate (CCNA), GIAC, CompTIA Linux+, Marine Corp Red Team Operator, Metasploit Professional, Certified Specialist, Nexpose, Certified Administrator (NCA,) Microsoft Certified Professional (MCP), CompTIA Network+, CompTIA IT, Operations Specialist (CIOS), CompTIA Secure Infrastructure Specialist (CSIS), Offensive Security Certified Professional (OSCP), GIAC Certified Penetration Tester (GPEN), Metasploit Professional, Certified Specialist Rapid7, Advanced Vulnerability Manager Rapid7, Network Assault Certified Rapid7, Application Assault Certified, GIAC Exploit Researcher, Advanced Penetration Tester (GXPN), GIAC Mobile Device Security Analyst (GMOB), GIAC Advanced Smartphone Forensics (GASF), GIAC Reverse Engineering Malware (GREM), GIAC Network Forensics Analyst (GNFA), GIAC Certified Intrusion Analyst (GCFA), GIAC Certified Forensic Examiner (GCFE), GIAC Security Essentials (GSEC), Portswigger Burpsuite Certified Practitioner, Cisco Certified Network Associate (CCNA), Cisco Certified Network Associate-wireless, Certified Ethical Hacker (CEH), CompTIA Network+US Navy, Joint Cyber Analyst Course (JCAC)
- Discovery. The first phase of penetration testing is OSINT and Discovery.
- Testing. Testing phase is performed by qualified engineers that utilize both automated and manual exploitation testing techniques and tools
- Assessment. Determine Risk to organization
- Knowledge Sharing. Provide clear results with Remediation planning
- Remediation. Organization remediates findings that pose a risk.
- Retesting. Retesting of remediated vulnerabilities and final report delivery
REDBOT SECURITY’S HYBRID APPROACH TO PENETRATION TESTING SOURCES INDUSTRY-LEADING FRAMEWORKS AND COMBINES SENIOR-LEVEL TALENT WITH OVER 20 YEARS OF EXPERIENCE TO TAILOR ALL CLIENT ENGAGEMENTS. SOME FRAMEWORKS AND TESTING GUIDES LEVERAGED BY REDBOT SECURITY INCLUDE:
- NIST SPECIAL PUBLICATION 800-115
- PCI PENETRATION TESTING GUIDE
- OPEN WEB APPLICATION SECURITY PROJECT
- OWASP WSTGV4
- OWASP TOP 10 LISTS
- OWASP SECURITY PROJECTS
- PENETRATION TESTING EXECUTION STANDARD (PTES)
- OPEN-SOURCE SECURITY TESTING METHODOLOGY MANUAL (OSSTMM)
- INFORMATION SYSTEMS SECURITY ASSESSMENT FRAMEWORK (ISSAF)
- MITRE ATT&CK FRAMEWORK
Yes, Redbot Security will share a sample report with potential clients that sign a Mutual NDA and have a valid project.
The company started as a VAR, partnering with Palo Alto, Fortinet and HPE in 2016 and transitioned to Pen-testing company 2018.
Yes. Redbot Security provides Industrial testing of ICS/SCADA networks that operate water, electric, manufacturing, transportation, and more.
Contact Us
Manual Penetration Testing
Our team is passionate about helping companies of all sizes secure their Applications and Networks.
-
Experts
Our team has 30-plus years of deep security testing in all types of environments, providing us with unique insight into roadblocks and security issues our clients face daily.
-
U.S. Based
Every Redbot Security Team Member is a Full-Time Employee, U.S citizen, and fully background checked. We do not use freelancers or subcontract work to other companies.
-
Proof of Concept
Redbot Security and our expert team will prioritize your goals, offering industry leading customer experience, testing, proof of concept reporting and transparent knowledge transfer / sharing.
-
Remediation Guidance
We provide expert remediation guidance, backed by years of application development, systems and network knowledge.
-
Custom Scoping
We take pride in delivering services based on the "right" scope.
-
Retesting Included
All of our network and application testing clients receive free retesting with proof of concept remediation on final report delivery
Redbot Security
600 17th St. 7th Floor
Denver, CO 80202
866-4-REDBOT
Redbot Social