Penetration Testing
Offensive Security & Vulnerability Assessment
Independent, hands-on penetration testing for web applications, APIs, networks, and cloud. I think like an attacker to find the weaknesses that matter — then hand you a clear, prioritized report your team can actually act on, plus a free retest once they're fixed. Real manual testing, not just a scanner dump.
Remote engagements worldwide · Based in Crete, Greece · EN / EL
Why work with me
Automated scanners catch the easy stuff; real risk hides in business logic, chained flaws, and misconfigurations a tool will never understand. I test manually against recognized methodologies (OWASP, PTES), validate every finding to cut out false positives, and write reports developers and management can both read — with reproduction steps and concrete fixes, not just CVE numbers.
- Manual testing — depth beyond automated scans
- Methodology-driven (OWASP, PTES, NIST)
- Every finding validated — minimal false positives
- Clear, fix-focused reporting + free retest
What I test
Web Applications
Authentication, access control, injection, business-logic and OWASP Top 10 flaws across your web apps and portals.
APIs & Mobile Backends
REST/GraphQL testing for broken object-level auth, mass assignment, rate-limit and token weaknesses (OWASP API Top 10).
Networks & Infrastructure
External and internal network testing — exposed services, weak configs, lateral movement and privilege escalation.
Cloud & Configuration
AWS/Azure/GCP misconfigurations, IAM and storage exposure, and hardening review against best-practice baselines.
How an engagement works
1
Scoping & authorization
We agree on targets, depth, timing and rules of engagement — backed by signed written authorization.
2
Recon & testing
Mapping the attack surface and methodical manual testing, with care to avoid disruption to production.
3
Exploitation & validation
Safe proof-of-concept exploitation to confirm real impact and rule out false positives.
4
Report & retest
A prioritized report with an executive summary, reproduction steps and fixes — then a free retest of remediated issues.
Engagements
Focused Assessment
A single target tested in depth.
- One web app, API, or network range
- Manual testing + prioritized report
- Remediation guidance call
Popular
Full Pentest + Retest
End-to-end test across your stack, with verification.
- Web + API + supporting infrastructure
- Executive summary + technical detail
- Free retest after remediation
Continuous / Red Team
Ongoing testing or adversary simulation.
- Recurring tests on each release
- Goal-based, full-scope scenarios
- Retainer & priority availability
Every engagement is scoped individually — final quote after a short scoping call. NDA available on request.
Authorized testing only. Every engagement requires a defined scope and signed, written authorization (Rules of Engagement). I test only systems you own or are explicitly permitted to test — work is legal, confidential, and non-destructive by design.
Questions
What do I actually receive?
A clear report with an executive summary, every finding rated by risk, reproduction steps, and concrete remediation advice — plus a debrief call and a free retest once you've fixed the issues.
Will testing disrupt production?
No — I test carefully, avoid destructive actions, and can work against staging or during agreed windows. Rules of engagement are set before anything starts.
Do you need written authorization?
Always. Testing only proceeds against a defined scope with signed authorization. I work only on systems you own or are explicitly permitted to assess.
Which standards do you follow?
OWASP Top 10 & ASVS, OWASP API Security Top 10, PTES and NIST guidance — useful for ISO 27001, SOC 2, GDPR and PCI DSS evidence.
Can you work remotely / across time zones?
Yes — engagements are delivered fully remotely worldwide. I'm based in Crete, Greece and work comfortably in English and Greek.