Security audits, configuration reviews, source code audits

Cybersecurity audit

Security audits of IT systems are done to confirm, that the infrastructure deployed in the organization fulfils security requirements and does not contain security vulnerabilities compromising the confidentiality, integrity or availability.

Security config review, build review

Config reviews and build reviews are performed on software solutions such as operating systems, services (e.g. HTTP). We verify the configuration in relation to security based on benchmarks such as NIST, CIS and recommendations from the vendor.

Security code review

Source code audits may be connected with a whitebox pentest or be delivered as a separate service. The code is verified for security vulnerabilities. The analysis is performed manually with aid from automated tools and custom scripting. We have experience in reviewing applications written in i.a. Bash/C/C++/Java/JavaScript/.NET/PHP/Python/Ruby.

Vulnerability scans

Vulnerability scans are performed by automated tools, which identifies mostly already known security bugs, for which it has defined plugins. In the next phase identified vulnerabilities are manually verified by our pentesters in order to eliminate false positives.

IT security audit

When in need of conducting it security audit we recommend to perform the following: config and build review, penetration testing and optionally code review. In case of a smaller budget or if a pentest was never done before it might be a good idea to start with a vulnerability scan to eliminate low hanging fruits.

Remote work environment security review

We perform security evaluations of work from home (WfH) setups. On the user / employee side review of system builds and configuration reviews can be performed. Additionally applications used for conference calls, messaging, VPN clients and all other typical apps used in a remote work scenario can be assessed. On the employer side we can test the security posture of external infrastructure responsible for granting remote access e.g. VPN servers.

Security Audits

Cybersecurity audit

Security config review, build review

Security code review

Vulnerability scans

IT security audit

Remote work environment security review

Explore Our Offer

Penetration Testing

Red Teaming

Security Audits

Threat Hunting &
Threat Intelligence

Digital Forensics &
Incident Response

Research &
Development

See the Competences of Our Team

We recommend REDTEAM.PL, the config review and penetration testing services requested by us were provided with the highest quality. The audit team demonstrated great commitment, professionalism and extensive knowledge.
— Institute of National Remembrance (IPN)

REDTEAM.PL has performed penetration tests of a mobile application. The entrusted work has been carried out on time and with due diligence, which resulted in a high quality evaluation of the services provided.
— Carefleet (Crédit Agricole Group)

REDTEAM.PL performs tasks in the field of security testing. The assignments are carried out on time and of high quality.
— Center for Informatics Technology (Ministry of Digital Affairs)

CERT.LV would like to thank REDTEAM.PL for the valuable information, which has helped us to improve security of IT resources of the Republic of Latvia.
— Latvian National and Governmental CSIRT

We recommend cooperation with REDTEAM.PL for professionalism and full commitment in the provision of services related to the security of websites.
— EFL Leasing (Crédit Agricole Group)

REDTEAM.PL performed penetration testing of a web application. Tests were carried out within the agreed timeframe and with due diligence. Results of the work provided in the report were understandable.
— Allianz

CERT.EE would like to thank REDTEAM.PL for the valuable information, which has helped us to improve security of IT resources of the Republic of Estonia.
— Estonian National and Governmental CSIRT

REDTEAM.PL has performed penetration tests of the integration module with the payment operator of the Reserved online store. The work was completed on time and with due diligence, and the service provided was high quality.
— Reserved (LPP)

REDTEAM.PL performed penetration testing of a web application. The work was carried out in a timely manner, with due diligence and professional ethics.
— PKO Życie TU (PKO Banking Group)

REDTEAM.PL performed penetration testing of an online store. The work was completed on time, with due diligence and was of high quality.
— GO Sport

Cybersecurity audit

Security config review, build review

Security code review

Vulnerability scans

IT security audit

Remote work environment security review

Explore Our Offer

Penetration Testing

Red Teaming

Security Audits

Threat Hunting &Threat Intelligence

Digital Forensics &Incident Response

Research &Development

See the Competences of Our Team

We recommend REDTEAM.PL, the config review and penetration testing services requested by us were provided with the highest quality. The audit team demonstrated great commitment, professionalism and extensive knowledge.— Institute of National Remembrance (IPN)

REDTEAM.PL has performed penetration tests of a mobile application. The entrusted work has been carried out on time and with due diligence, which resulted in a high quality evaluation of the services provided.— Carefleet (Crédit Agricole Group)

REDTEAM.PL performs tasks in the field of security testing. The assignments are carried out on time and of high quality.— Center for Informatics Technology (Ministry of Digital Affairs)

CERT.LV would like to thank REDTEAM.PL for the valuable information, which has helped us to improve security of IT resources of the Republic of Latvia.— Latvian National and Governmental CSIRT

We recommend cooperation with REDTEAM.PL for professionalism and full commitment in the provision of services related to the security of websites.— EFL Leasing (Crédit Agricole Group)

REDTEAM.PL performed penetration testing of a web application. Tests were carried out within the agreed timeframe and with due diligence. Results of the work provided in the report were understandable.— Allianz

CERT.EE would like to thank REDTEAM.PL for the valuable information, which has helped us to improve security of IT resources of the Republic of Estonia.— Estonian National and Governmental CSIRT

REDTEAM.PL has performed penetration tests of the integration module with the payment operator of the Reserved online store. The work was completed on time and with due diligence, and the service provided was high quality.— Reserved (LPP)

REDTEAM.PL performed penetration testing of a web application. The work was carried out in a timely manner, with due diligence and professional ethics.— PKO Życie TU (PKO Banking Group)

REDTEAM.PL performed penetration testing of an online store. The work was completed on time, with due diligence and was of high quality.— GO Sport

Threat Hunting &
Threat Intelligence

Digital Forensics &
Incident Response

Research &
Development

We recommend REDTEAM.PL, the config review and penetration testing services requested by us were provided with the highest quality. The audit team demonstrated great commitment, professionalism and extensive knowledge.
— Institute of National Remembrance (IPN)

REDTEAM.PL has performed penetration tests of a mobile application. The entrusted work has been carried out on time and with due diligence, which resulted in a high quality evaluation of the services provided.
— Carefleet (Crédit Agricole Group)

REDTEAM.PL performs tasks in the field of security testing. The assignments are carried out on time and of high quality.
— Center for Informatics Technology (Ministry of Digital Affairs)

CERT.LV would like to thank REDTEAM.PL for the valuable information, which has helped us to improve security of IT resources of the Republic of Latvia.
— Latvian National and Governmental CSIRT

We recommend cooperation with REDTEAM.PL for professionalism and full commitment in the provision of services related to the security of websites.
— EFL Leasing (Crédit Agricole Group)

REDTEAM.PL performed penetration testing of a web application. Tests were carried out within the agreed timeframe and with due diligence. Results of the work provided in the report were understandable.
— Allianz

CERT.EE would like to thank REDTEAM.PL for the valuable information, which has helped us to improve security of IT resources of the Republic of Estonia.
— Estonian National and Governmental CSIRT

REDTEAM.PL has performed penetration tests of the integration module with the payment operator of the Reserved online store. The work was completed on time and with due diligence, and the service provided was high quality.
— Reserved (LPP)

REDTEAM.PL performed penetration testing of a web application. The work was carried out in a timely manner, with due diligence and professional ethics.
— PKO Życie TU (PKO Banking Group)

REDTEAM.PL performed penetration testing of an online store. The work was completed on time, with due diligence and was of high quality.
— GO Sport