Find a pentest company with SOC 2 Type II
114 companies have this certification
SOC 2 Type II Certification
Origin
SOC 2 (Service Organization Control 2) was developed by the American Institute of Certified Public Accountants (AICPA) in 2011 as part of their Service Organization Control reporting framework. It was created to address the growing need for standardized security and privacy assurance as more organizations began storing data in the cloud and relying on third-party service providers. The certification was designed to evaluate how well service organizations manage customer data based on five "Trust Services Criteria": security, availability, processing integrity, confidentiality, and privacy. Type II specifically requires organizations to demonstrate these controls over a minimum period of time (typically 3-12 months), rather than just at a single point in time.
Industry Value
SOC 2 Type II certification is highly valued because it provides independent verification that a company has implemented and maintained robust security controls over an extended period. For service providers, achieving this certification demonstrates credibility and commitment to data protection, often becoming a competitive differentiator and a prerequisite for winning enterprise clients. Many organizations, particularly in healthcare, finance, and technology sectors, require their vendors to be SOC 2 Type II compliant before sharing sensitive data or establishing business relationships. The certification gives customers confidence that their service providers have been audited by qualified third parties and meet industry-recognized standards for protecting information assets.
Lumifi
Cybersecurity company based in Scottsdale, Arizona, specializing in penetration testing and proactive security assessments; offers network, cloud, IoT, OT testing, red/blue/purple team exercises, and continuous vulnerability scanning.
Difenda (acquired by Quorum Cyber)
Difenda is a cybersecurity firm based in Goodyear, Arizona, specializing in professional and managed security services, including offensive security and vulnerability management; 16 employees, founded in 2008, with a -71.4% YoY growth, focusing on cyber risk, compliance, and threat intelligence.
True Digital Security
Cybersecurity company based in Scottsdale, Arizona, providing cybersecurity, IT governance, and compliance services; offers penetration testing and ethical hacking services as core capabilities.
Amrux Tech LLC
IT services and consulting company specializing in cybersecurity, system integration, and managed services; offers penetration testing and vulnerability assessments; founded 2025; based in Sunnyvale, California, with 2 employees and rapid 100% monthly growth.
AllSafe IT
AllSafe IT is a private IT & cybersecurity company based in Pasadena, California, founded in 2005, with 16 employees and a -2% YoY growth. They specialize in IT solutions, including penetration testing services, and serve a global market with 5,134 monthly visits and a low web rank (#3,555,038). The firm focuses on managed IT support, cybersecurity, cloud, and infrastructure, with a market position of #3,555,038 globally and #1,878,860 in the US.
CyberDuo
CyberDuo is a cybersecurity-focused managed IT services provider based in Los Angeles, California; it offers cybersecurity solutions including penetration testing services, supporting SMBs in managing and securing their IT infrastructure.
Fluid Attacks
Application security testing company specializing in penetration testing, automation, and AI-driven vulnerability detection; 107 employees; Founded 2001; San Francisco, CA; Market position #540,930 globally, #154,699 in country; Focuses on DevSecOps, ethical hacking, and security testing services.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
Prancer
Prancer is a private cybersecurity company specializing in AI-native autonomous continuous security validation and penetration testing platforms; based in San Diego, California, with 4 employees, founded in 2020, and approximately $1.5M in funding. The company offers quick, affordable cloud security and pentesting solutions designed for DevSecOps teams, supporting automated security assessments and collaboration.
Salt Security
Cybersecurity company specializing in API security; headquartered in Palo Alto, CA; offers an AI-infused API security platform covering discovery, posture management, and threat protection; provides penetration testing, security audits, and red-team services.
CyCognito
CyCognito is a cybersecurity firm based in Palo Alto, California, specializing in external exposure management and penetration testing services. It provides active security testing, web app pen tests, and automated pentesting platforms, enabling organizations to identify vulnerabilities and manage external security risks effectively.
Neosec
Cybersecurity company providing penetration testing and vulnerability assessment services; headquartered in Palo Alto, California, United States; known for comprehensive security testing solutions.
Fastly
Fastly is a private edge cloud platform provider specializing in CDN, video streaming, load balancing, and security solutions; with 868 employees, $592M annual revenue, founded in 2011, headquartered in San Francisco, CA, and actively engaged in penetration testing of its systems and customer services.
Tec-refresh, Inc.
Managed IT and security services provider based in Newport Beach, California; offers penetration testing services following PTES, OWASP, PCI, and HIPAA guidelines; specializes in cybersecurity, backup, disaster recovery, and network visibility; focuses on security, automation, and client empowerment.
Aptori
Cybersecurity company specializing in AI-powered application security and automated vulnerability remediation; headquartered in San Jose, CA; offers penetration testing services including AI-automated pen testing and API vulnerability scanning, focusing on proactive security for code, APIs, applications, and cloud.
Advertise on pentest.fyi
You could be here!
Deepwatch
Cybersecurity company specializing in managed security services and advanced threat detection; $120M annual revenue, $381M total funding, founded 2019, Palo Alto, CA; provides penetration testing and security assessments, with active engagement in red team exercises and vulnerability exploitation.
FocusConnect IT
Cybersecurity company headquartered in Denver, Colorado; provides penetration testing services for vulnerability assessment and security management; serves fast-growing companies with a focus on IT and cybersecurity solutions.
Kyber Security
Cybersecurity company providing managed IT, penetration testing, vulnerability scans, and compliance services; 8 employees, $5.8M revenue, founded 2017, headquartered in Trumbull, Connecticut, USA.
ADNET Technologies
Connecticut-based IT company specializing in cybersecurity, cloud, and IT support; offers penetration testing services to identify vulnerabilities and demonstrate attack scenarios. Headquarters in Connecticut, serving CT & NY.
Pylon Technology
Cybersecurity and managed security services provider based in Westport, Connecticut; offers penetration testing, vulnerability assessments, and compliance services for regulated organizations; 17+ years in business, serving 100+ clients, with 2 SOC locations.
TPS Cyber
TPS Cyber is a cybersecurity-focused IT services and consulting company based in Washington, D.C., with 3 employees and founded in 2012. They specialize in penetration testing, vulnerability assessments, and security strategy, offering services such as risk assessment, certification, audit readiness, and cyber incident response. The company has installed over 400 systems across Germany and Europe, demonstrating extensive experience in industrial and automotive sectors.
Compuquip Cybersecurity
Compuquip Cybersecurity is a private cybersecurity company specializing in computer and network security solutions; 51 employees with a -7.2% YoY growth, $7M annual revenue, founded in 1980, headquartered in Miami, Florida. The firm offers penetration testing, cybersecurity consulting, and cloud security management, serving enterprise clients with a global rank of 3,446,568 and a local rank of 1,878,251.
Halo Security
Halo Security is a private computer and network security company specializing in external attack surface management; 12 employees with 47.8% YoY growth, founded in 2013, headquartered in Miami Beach, Florida. The company offers a scalable platform that provides deep visibility into internet-facing assets, including manual penetration testing services, and is recognized for comprehensive attack surface management and vulnerability assessment capabilities.
True Digital Security
Cybersecurity company specializing in penetration testing services; offers dedicated pages and blog content on pentest solutions such as network and Azure testing; based in West Palm Beach, Florida, with $3.6M annual revenue and 1 employee; founded in 1985.
Secnap Cybersecurity
IT services and cybersecurity firm based in Fort Lauderdale, Florida; specializes in penetration testing, security assessments, and managed security services; 9 employees, $1.8M revenue, founded 2001; received $750K seed funding in 2017; active in cybersecurity innovation and consulting.
Faraday
Faraday is a private cybersecurity company specializing in computer and network security; it provides penetration testing, vulnerability management, and application security tools for large enterprises, MSSPs, and security teams. Based in Miami, Florida, with 29 employees (+1.9% YoY growth), and approximately $2.8M in annual revenue, it actively offers penetration testing and red team services, supported by references to pentesting activities and related content.
Abacode, a Thrive company
Abacode, a Thrive company is a private cybersecurity firm based in Tampa, Florida, specializing in compliance, incident response, and third-party risk management; with 44 employees, $10M annual revenue, and $4.8M in funding, it actively provides penetration testing services, security monitoring, GRC, and digital forensics, competing with firms like Amethyst Risk Management and Braintrace.
BLACKCLOAK
BLACKCLOAK is a private cybersecurity firm specializing in digital executive protection, personal cybersecurity, and digital privacy solutions for high-net-worth individuals and corporate leaders; 84 employees with 57.9% YoY growth, $2.4M annual revenue, and $30.7M in funding. Based in Orlando, Florida, it uniquely offers active penetration testing services, including weekly external network assessments, to evaluate and enhance client security.
Input Output, LLC
Private IT & cybersecurity firm based in West Palm Beach, Florida, founded in 2018; 3 employees; $9.4M revenue; specializes in penetration testing, cybersecurity compliance, and risk management; offers services including ethical hacking, penetration testing, and security standards adherence; focused on helping businesses navigate regulations and cyber threats.
WheelHouse IT
IT services and consulting company specializing in cybersecurity, including active penetration testing; 40 employees, $9.8M revenue, founded 2002 in Fort Lauderdale, FL; provides hands-on security assessments with experienced ethical hackers.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
MaxDefense.io
MaxDefense.io is a private cybersecurity firm specializing in managed security solutions and consulting for SMBs, government agencies, and contractors; founded in 2020, with 4 employees, headquartered in Atlanta, GA, and offering penetration testing, 24/7 network monitoring, virtual CISO, and managed firewalls.
Network Technology Solutions, LLC
Cybersecurity and network security company based in Georgia; provides penetration testing, security audits, SOC 2 compliance, and IT support with 11 employees, $18.4M revenue, founded 1999, and active in security services including vulnerability assessments.
PurpleBox Security
Cybersecurity company based in Atlanta, Georgia, specializing in penetration testing, cybersecurity, and compliance solutions; explicitly offers pen testing services as a core part of their offerings.
FOGO Solutions
Managed IT, cloud, cybersecurity, and digital marketing company based in Carrollton, Georgia; provides penetration testing services including PCI compliance testing and active security assessments.
Ascend Technologies
Cybersecurity company specializing in penetration testing services; headquartered in Chicago, Illinois, USA, with active engagement in security testing and vulnerability assessments.
Excaltech
Managed IT services provider headquartered in Rolling Meadows, Illinois; offers cybersecurity and penetration testing services, including Black Box third-party testing and vulnerability assessments.
IP Pathways
IP Pathways is a private IT services and consulting firm based in Urbandale, Iowa, founded in 2007, with 95 employees and $9.2M revenue. They provide cloud, managed services, IT hardware & software, data center, virtualization, networking, and security services, including penetration testing; 95 employees, founded 2007, headquartered in Urbandale, IA, USA.
Aureon
Iowa-based IT and network solutions provider; offers managed IT, network, talent solutions, and penetration testing services including security audits and risk assessments • Headquarters in West Des Moines, Iowa, United States.
Bento Security
Cybersecurity and information security company specializing in penetration testing; 4 employees, founded 2005, headquartered in Portland, Maine, USA; offers bespoke security solutions, cybersecurity consulting, SOC2 readiness, and cyber transformation services.
Black Kite
Black Kite is a private cybersecurity company specializing in third-party risk management software and solutions; 118 employees (+20.3% YoY growth), $6.2M annual revenue, founded in 2016 in Boston, MA • Provides active penetration testing services with at least annual assessments, emphasizing security testing and vulnerability management.
Veracode
Veracode is a private computer and network security company specializing in software security solutions for the AI era; with 390 employees, $250M annual revenue, founded in 2006 in Burlington, Massachusetts. It has received $114.3M in funding, last raised in 2014, and recently acquired Phylum. Veracode provides active penetration testing services, including Penetration Testing as a Service and Web Application Penetration Testing, emphasizing attack-simulation and ethical hacking capabilities. It is a global leader in Application Risk Management, leveraging trillions of code scans and proprietary AI-assisted remediation, ranked #154,009 worldwide and #77,904 in the US.
ITPartners+
Cybersecurity and IT services company specializing in managed services, security, and penetration testing; 29 employees, $7M revenue, $30M funding; based in Grand Rapids, Michigan, USA; provides penetration testing services and targeted IT solutions for government, enterprise, and public sectors.
AppAcuity, Inc.
Private technology company specializing in graph-based attack path management and AWS environment visualization; offers SaaS exposure assessment and AI-powered penetration testing services with automated daily testing and expert analysis; 7 employees with 80% YoY growth; headquartered in Grand Rapids, Michigan, founded in 2019.
OneStream Software
Enterprise finance management platform specializing in unifying financial and operational data with embedded AI; headquartered in Birmingham, Michigan, with a strategic partnership with Microsoft including SensibleAI™ integration; provides penetration testing services with documented web application penetration tests and maintains a Trust Center with security reports.
TSAROLABS
TSAROLABS is a private software development firm specializing in cybersecurity solutions such as penetration testing, incident simulation, and ransomware mitigation; founded in 2017, with 26 employees and 47.6% YoY growth, headquartered in Farmington Hills, Michigan, USA, offering comprehensive IT security services and maintaining a modest web presence.
MentorMate
IT Services and IT Consulting company founded in 2001; based in Minneapolis, Minnesota; 494 employees; $65M revenue; offers web development, UX, security, and penetration testing services; 10,231 monthly website visits; global rank #2,144,500; competes with myriad mobile and intersog.
NetSPI
Cybersecurity company specializing in penetration testing and proactive security solutions; 449 employees, $125M revenue, $500M funding; headquartered in Minneapolis, Minnesota; founded 2001; offers application, cloud, blockchain, and network pentesting, with active PTaaS platforms for web and network security.
Netgain Technology, LLC
Managed cloud services provider headquartered in Minneapolis, Minnesota; offers cloud solutions for accounting, healthcare, and legal sectors, with explicit penetration testing services to evaluate security posture.
ECS Technology Solutions
Cybersecurity and managed IT services provider specializing in penetration testing, vulnerability assessments, and enterprise solutions; 17 employees with 20% YoY growth; founded 2004; headquartered in Elkhorn, Nebraska, United States; serves Midwest businesses with managed antivirus, security, cloud, and IT strategy services.
FNTS
IT services and consulting company specializing in multi-cloud, managed IT, and cybersecurity solutions; provides penetration testing services such as IBM Z Pen Testing and Vulnerability Scanning; 79 employees (+6.0% YoY growth), $27M revenue; headquartered in Omaha, Nebraska, founded in 1995.
Cylerian
Cybersecurity company specializing in cloud security, observability, and operations; 13 employees with 63.6% YoY growth; founded 2018; headquartered in Jersey City, NJ; offers a unified SaaS security platform and penetration testing services.
Futurism Technologies
Digital transformation company headquartered in Piscataway, New Jersey, USA; specializes in penetration testing and vulnerability assessments, offering PTaaS and comprehensive cybersecurity testing services to identify vulnerabilities in networks, web, and mobile applications.
Consortium
Cybersecurity-focused IT services and consulting company based in Cherry Hill, New Jersey; 49 employees (+30% YoY growth), $12M revenue; offers penetration testing, incident response, risk assessment, and policy development; recently acquired Metrics That Matter; active in cybersecurity testing and forums; ranked #5,779,985 globally and #166,6387 in country.
NopSec
Cybersecurity company specializing in vulnerability management and penetration testing; 9 employees, $6M revenue, founded 2013, headquartered in New York, NY; offers in-house penetration testing services with detailed reports and remediation guidance.
Stern Security
Cybersecurity firm based in Raleigh, North Carolina; specializes in penetration testing and security assessments with a focus on real-world attack simulations to identify vulnerabilities. The company’s website and blog highlight expertise in ethical hacking and red team activities.
KLEAP Technologies Pvt. Ltd.
Cybersecurity company headquartered in Raleigh, North Carolina; offers penetration testing services including network and infrastructure pentests; focuses on protecting startups and SMBs' digital assets with advanced security solutions.
Helios Security
Cybersecurity and network security company specializing in penetration testing, including AI-assisted services; 2 employees; headquartered in Columbus, Ohio; offers vulnerability assessments, web application security, and security consulting for SMBs and enterprises.
Hurricane Labs
Cybersecurity company specializing in managed security services and Splunk expertise; provides penetration testing, SIEM, threat detection, and 24x7 SOC support; 51 employees, $9.5M revenue, founded 2003 in Beachwood, Ohio, with a global rank of #2,774,296 and US rank of #1,474,584.
PCR Business Systems
Outsourced IT company based in Akron, Ohio, specializing in cybersecurity, tech support, and managed IT services; offers penetration testing and vulnerability assessments to identify security weaknesses; serves Akron and Northeast Ohio.
EasyIT
Managed IT services provider based in Dublin, Ohio; offers network support, remote support, help desk, and cybersecurity including penetration testing; serves Columbus and Central Ohio.
Pinpoint Security, LLC
Cybersecurity company specializing in penetration testing services; provides network and web application security assessments through qualified third-party testing; 5 employees; Founded 2018; Yukon, Oklahoma, USA.
Advertise on pentest.fyi
You could be here!
Appalachia Technologies, LLC
Cybersecurity and managed IT services provider based in Mechanicsburg, PA; offers penetration testing, web application pentesting, and cybersecurity consulting; headquartered in Pennsylvania, serving local and regional clients.
Omega Systems
Omega Systems is a private IT services and consulting firm based in Reading, Pennsylvania, with 130 employees and $12M revenue; specializes in managed IT, cybersecurity, cloud, compliance, and penetration testing services; founded in 2002, recently acquired PEAKE Technology Partners, and recognized for growth and cybersecurity excellence.
Connect Solutions, Inc.
Cybersecurity company headquartered in Charleston, South Carolina, providing penetration testing services; listed on their cybersecurity solutions page as offering nationwide pentest services; based in Charleston, SC.
Hayrok
Hayrok is a private cybersecurity firm based in Houston, Texas, founded in 2024, with 5 employees and experiencing 133.3% YoY growth. It offers managed security services such as penetration testing, threat monitoring, incident response, and compliance support, integrating seamlessly with cloud and enterprise workflows to protect modern organizations.
Recon InfoSec
Cybersecurity firm specializing in managed security operations, incident response, and penetration testing; 14 employees with 31.6% YoY growth; based in Austin, Texas, founded in 2018; actively involved in pentest services as evidenced by blog content; maintains a modest web presence with 3,361 monthly visits and global rank #4,898,654.
Dark Rock Cybersecurity, LLC
Cybersecurity company specializing in penetration testing, compliance, and security assessments; 5 employees, founded 2024, headquartered in Austin, TX; focuses on innovative security solutions and proactive threat mitigation.
LevelBlue
Cybersecurity company specializing in penetration testing services across IT, OT, IoT, physical, and personnel security; offers Penetration Testing as a Service with retesting and validation components; 420 employees with 115.1% YoY growth; headquartered in Dallas, Texas; recently acquired Trustwave; competes with LogRhythm, Darktrace, and FSecure.
Buzzclan
BuzzClan is a Texas-based consulting firm specializing in digital transformation and IT solutions; it explicitly offers penetration testing services, including network vulnerability assessments using manual and automated methods. The company is headquartered in Dallas, Texas, and focuses on cybersecurity and IT consulting.
Gradient Cyber
Cybersecurity firm headquartered in Southlake, TX; offers penetration testing and ethical hacking services to assess and improve security posture.
Gxa
GXA (Gxa Network Solutions) is a Texas-based IT consulting company headquartered in Richardson, TX, specializing in cybersecurity and IT management services. It offers penetration testing, including virtual penetration testing, as part of its security solutions, serving growing Dallas businesses.
NetRise
Cybersecurity company specializing in firmware security, SBOM, and risk visibility; 35 employees, $2.4M revenue, founded 2020 in Austin, TX; provides penetration testing and ethical hacking services, with a $6.1B market cap and $24.8M funding.
SpecterOps
Cybersecurity company specializing in adversary tradecraft, identity attack path management, and penetration testing; 196 employees with 87.5% YoY growth; founded 2017; headquartered in Alexandria, Virginia, USA; $108.5M in funding; known for BloodHound and active attack path management services.
Forsyte I.T. Solutions
IT services and consulting company specializing in cybersecurity, including penetration testing; based in Richmond, Virginia, with 45 employees and 3.8% annual growth since 2014; offers security assessments, workshops, and compliance services; ranked #10,077,984 globally with 965 monthly website visits.
Cellebrite
Public safety and digital forensic solutions provider; 952 employees with 6.8% YoY growth, $419.2M annual revenue, headquartered in Vienna, Virginia, founded in 1999, with a $4.0B market cap; offers digital intelligence, forensic analysis, and penetration testing services, recently acquired Corellium to enhance security and forensic capabilities.
Gillware
IT Services and IT Consulting company specializing in data recovery and digital forensics; 23 employees, $10.8M revenue, founded 2004, Madison, WI; offers data recovery, digital forensics, and penetration testing services, with a focus on complex cases in a clean environment lab.
ValorTech | Managed IT & Cybersecurity
Managed IT and cybersecurity company specializing in military-grade IT support and penetration testing; 12 employees with 21.4% YoY growth, founded in 2017 and headquartered in Menomonee Falls, Wisconsin, USA; offers comprehensive IT services including security, enterprise architecture, DevOps, compliance, and help desk support.
Tekizz IT Services
Cybersecurity and IT services provider based in Sheridan, Wyoming, specializing in penetration testing, cloud solutions, cybersecurity, custom development, analytics, and corporate training; explicitly offers penetration testing and threat monitoring services, with a focus on digital transformation and talent acquisition.
Aikido Security
Aikido Security is a Belgium-based private software development firm founded in 2022, specializing in security solutions including penetration testing and attack testing platforms; 95 employees with 218% YoY growth, $700K annual revenue, and $24.6M in total funding. The company is trusted by over 50,000 organizations and operates in categories such as security, DevSecOps, SAST, and cloud security.
Verinet Server Hosting Center for Colocation and IT Outsourcing
Denmark-based private security company specializing in government relations and security solutions; offers penetration testing, ransomware, crypting, decryption, and malware services to 2,500 dealers; 2 employees; active in ethical hacking and vulnerability assessments.
Tech Fusion Lab
Tech Fusion Lab is a private Information Services company founded in 2020 and headquartered in Tallinn, Estonia, with 2 employees. It provides IT solutions, cybersecurity—including penetration testing services—and digital marketing strategies, focusing on boosting productivity, security, and growth. The company has a web presence with 147 monthly visits and recent activity related to decentralized software marketplaces.
Binalyze
Cybersecurity company based in Tallinn, Estonia; specializes in penetration testing, red teaming, and incident response services; performs at least annual pentests and attacker simulations; headquartered in Tallinn, Estonia.
Cyber Security Finland
Cyber Security Finland is a private cybersecurity company specializing in network and data security, with a focus on penetration testing, vulnerability assessments, incident response, and security consulting; 4 employees, founded 2021, based in Helsinki, Finland. The company explicitly offers penetration testing services, including vulnerability assessments and advanced testing, demonstrating strong technical security expertise.
Pohjalab Oy.
Pohjalab Oy. is a Finland-based software development company specializing in blockchain, AI, and security services, with a focus on penetration testing; 2 employees, -33.3% YoY growth, founded 2016 in Helsinki, Finland. The company offers security and compliance services, including penetration testing, and is involved in arts and culture categories related to Indian art and traditional sculpture.
Bloklab Limited
Finland-based blockchain company specializing in asset tokenization and Web3 infrastructure; headquartered in Helsinki, with a focus on secure, scalable solutions for real-world assets and on-chain gaming. Recognized as Europe's leading blockchain innovator, trusted by Uniswap and Chainlink, with active penetration testing and security assessments to ensure platform integrity.
Neosec
Neosec is a private IT services and cybersecurity consulting company based in Mönchengladbach, Germany, with 4 employees and 25% YoY growth. It specializes in attack surface enumeration, vulnerability assessment, penetration testing, and AI/ML risk prediction, providing comprehensive security support to organizations.
Provectus Technologies GmbH
German cybersecurity firm based in Munich; provides IT security, compliance, and penetration testing services; operates as a GmbH with a strong focus on security assessments and compliance solutions.
Orizon Cyber Security
Italy-based cybersecurity firm specializing in penetration testing; offers AI-powered pentest tools and professional report generation; headquartered in Brescia, Italy.
EcomWall
IT services and consulting company specializing in fraud prevention and threat intelligence for e-commerce; offers penetration testing services with customized testing and vulnerability reports; based in Vilnius, Lithuania, founded in 2023, with 5 employees.
Proximus NXT Luxembourg
IT Services and IT Consulting company specializing in telecom, cloud, data solutions, and cybersecurity; 147 employees with 11.7% YoY growth; $3.2M revenue; founded 1978; based in Bertrange, Luxembourg; provides penetration testing, security audits, and vulnerability assessments.
Cyver.io
Cyver.io is a private cybersecurity company specializing in penetration testing services and pentest management platforms; founded in 2020 and based in Amsterdam, Netherlands, with 7 employees (+37.5% YoY growth). They offer Cyver Core, a platform for pentest reporting, collaboration, and automation, featuring continuous assessments, dashboards, insights, integrations, and generative AI. The company targets pentest providers, security consultants, and enterprise teams, and is active online with 11,284 monthly visits and a global rank of #1,713,316.
Hadrian
Hadrian is a Netherlands-based cybersecurity firm specializing in attack surface management; 86 employees (+29.8% YoY), $2.5M revenue, $13.9M funding, founded 2021, with services including automated penetration testing, asset discovery, vulnerability management, and cloud security solutions. Ranked #618,472 globally and #42,348 in the Netherlands, with a strong online presence and recent funding for expansion.
Codacy
Private software development company specializing in code analysis, security, and engineering performance tools; 51 employees, $5M annual revenue, founded in 2012 in Lisbon, Portugal; $29.4M in total funding, Series B in 2022; provides penetration testing services for Business tier customers, integrating security into development workflows.
Sofistic
Cybersecurity company based in Spain; provides penetration testing and security audit services since 2009; headquartered in Castellón, Spain.
Ethon Shield
Cybersecurity company specializing in computer and network security; provides penetration testing, ethical hacking, and security audits for telecom networks, including 5G security testing and telecom hacking audits • 3 employees; Founded 2018; Majadahonda, Spain
Cuatroochenta
IT services and consulting company based in Spain; offers cybersecurity services including penetration testing, security audits, and red teaming through its Sofistic unit; 142 employees; founded 2011; EUR 32.7M market cap; $14.1M funding; recent acquisition of MPservices; active in digital solutions, business intelligence, and legal consulting; global web presence with 7,598 monthly visits and ranked #2,384,246 worldwide.
NeuralTrust
Spain-based cybersecurity firm specializing in AI security; offers automated penetration testing and red teaming services for AI endpoints, emphasizing proactive threat detection and ethical hacking in generative AI workflows.
Nordic Defender
Cybersecurity company specializing in crowdsourced penetration testing; offers fully-managed, continuous offensive security services with detailed scope, reporting, and remediation; founded in 2019, based in Gothenburg, Sweden; 12 employees; $1M annual revenue.
Advania Group
Advania Group is a Swedish-based IT services and consulting firm with 165 employees and $1.4B annual revenue, operating across Nordics, UK, and Ireland; known for cybersecurity, cloud, and IT infrastructure services, and certified for penetration testing by UK NCSC.
Packetlabs
Packetlabs is a Canadian-based private cybersecurity firm specializing in penetration testing; 43 employees, founded in 2011, headquartered in Mississauga, Ontario. It is CREST-accredited and SOC 2 Type II attested, delivering impact-first security assessments with no outsourcing or false positives. The company has a strong web presence with 45,956 monthly visits and ranks #718,442 globally.
Cybersecurity Inc.
Cybersecurity Inc. is a private cybersecurity firm specializing in vulnerability management and penetration testing; it offers continuous penetration testing and red team simulations through its AI-powered platform. Founded in 2019 and headquartered in Nepean, Canada, the company has 2 employees and generates $5M-$10M in annual revenue. Its platform features integrated tools, scanners, and custom plugins to identify and prioritize vulnerabilities, emphasizing offensive security and proactive threat exposure management.