Find a pentest company offering Web Application Penetration Testing
66 companies offer this service
Artifice Security
Cybersecurity company specializing in penetration testing; veteran-owned firm with 2 employees, founded in 2016, based in Denver, Colorado, USA; provides real-world attack simulations on networks, devices, web apps, infrastructure, and personnel to identify security risks.
SpyderSec
Cybersecurity company specializing in computer and network security; provides penetration testing services and related cybersecurity solutions. Founded in 2015, headquartered in Denver, Colorado, with 1 employee and 452 monthly website visits.
Cyopsis now Vestige Digital Investigations
Digital forensics, e-discovery, investigations, and cybersecurity services provider; offers active penetration testing including network, web app, Wi-Fi, and external pentesting; $23.4M annual revenue, founded 2004, based in Englewood, Colorado, with 2 employees.
Core Networks, Inc.
IT services and consulting company specializing in information security; offers penetration testing, forensics, incident response, and security consulting; 2 employees; founded 1991; headquartered in Glastonbury, Connecticut, USA.
Shinobi Security
Cybersecurity company specializing in AI-powered penetration testing; provides agentless cloud security tools to identify vulnerabilities and risky exposures in applications, focusing on attack paths that matter; 7 employees, founded 2022, Wilmington, Delaware, US; 15.4% YoY growth.
Exploit Strike
Exploit Strike is a cybersecurity professional services company specializing in penetration testing and red teaming; founded in 2023, with 10 employees (+57.1% YoY growth), headquartered in Newark, Delaware, United States. The firm offers services such as network penetration tests, application security assessments, physical penetration tests, vulnerability scans, and compliance consulting, focusing on identifying and mitigating vulnerabilities in organizational systems and infrastructure.
Asteros
Asteros is a private cybersecurity and IT services firm headquartered in Atlanta, Georgia, with 1 employee. It specializes in penetration testing, vulnerability assessments, and security consulting for SMBs, education, and non-profit sectors, helping clients prepare for audits such as SOC 2, ISO 27001, and HIPAA. The company has a small but active online footprint, with 1,639 monthly website visits and a global rank of #7,830,263, and maintains active social media presence.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
accentedge
IT Services and IT Consulting company specializing in telecommunications, cybersecurity, digital transformation, and cloud computing; 3 employees with 50% monthly and yearly growth; founded 2018; headquartered in Chicago, Illinois, USA; provides active penetration testing services with certified pentesters.
Halborn
Cybersecurity firm specializing in blockchain security; headquartered in Illinois, USA; offers penetration testing, smart contract audits, and red teaming for enterprise digital assets and blockchain infrastructure.
CTS Computers
IT services and consulting company based in Illinois, USA; founded in 1991; 7 employees; $23.9M revenue; provides managed IT, cloud, security, and business continuity services; actively offers penetration testing including network, web app, and social engineering assessments; serves Danville, Terre Haute, and Indianapolis.
TreeTop Security
Cybersecurity company specializing in network and web application penetration testing; founded in 2017 with 2 employees in Hays, Kansas, USA; offers tailored security solutions and security assessments to various sectors.
Veracode
Veracode is a private computer and network security company specializing in software security solutions for the AI era; with 390 employees, $250M annual revenue, founded in 2006 in Burlington, Massachusetts. It has received $114.3M in funding, last raised in 2014, and recently acquired Phylum. Veracode provides active penetration testing services, including Penetration Testing as a Service and Web Application Penetration Testing, emphasizing attack-simulation and ethical hacking capabilities. It is a global leader in Application Risk Management, leveraging trillions of code scans and proprietary AI-assisted remediation, ranked #154,009 worldwide and #77,904 in the US.
High Bit Security, LLC
Cybersecurity company specializing in penetration testing; 3 employees, $10M revenue, founded 2009 in Port Sanilac, Michigan; known for transparency, top ratings, and exclusive focus on pentest services.
Grid32 Cybersecurity
Cybersecurity company specializing in network and web application penetration testing, phishing, and social engineering assessments; founded in 2009, with 1 employee, headquartered in Jersey City, New Jersey, USA. Offers comprehensive results and mitigation strategies, emphasizing client relationships.
Advertise on pentest.fyi
You could be here!
Loial Inc
IT services and consulting company specializing in cybersecurity; offers penetration testing services including network, web application, and API testing; based in Albuquerque, New Mexico with 6 employees and a focus on customized, cost-effective data protection solutions.
Yappo CyberSec
Yappo CyberSec is a next-generation penetration testing company specializing in AI-driven web and API security assessments; based in Albuquerque, NM, with 4 employees, founded in 2018, serving startups and small businesses with fast, affordable pentest services.
Invadel
Cybersecurity company specializing in penetration testing; headquartered in New York, NY; offers manual, expert-led pentest services with real-time vulnerability tracking and 24-hour start guarantee; serves SaaS, fintech, healthcare, and cloud-native sectors.
Velstadt Cybersecurity
Cybersecurity company specializing in computer and network security; founded in 2018, based in New York, USA, with 2 employees and +200% YoY growth. Offers penetration testing, threat hunting, and social engineering services to over 100 clients, supported by 50+ certifications.
ATTACKD
Cybersecurity company specializing in penetration testing services such as network, web application, mobile, and wireless testing; founded in 2015, with 2 employees, headquartered in Lewis Center, Ohio, USA, focusing on identifying vulnerabilities from an attacker's perspective.
State of Oregon
U.S. state government agency based in Salem, Oregon, with 3,303 employees (+4.3% YoY growth) and $26.5B annual revenue; provides public services, news, and initiatives; offers cybersecurity including penetration testing services to state agencies, supported by established security standards.
Awa Infosec
Cybersecurity company specializing in penetration testing services; offers web application, external network, and social engineering testing conducted by certified ethical hackers; headquartered in Dresher, Pennsylvania, United States.
ProNsight
ProNsight is a private business consulting and IT services firm specializing in governance, risk, and compliance (GRC) and information security solutions; provides comprehensive penetration testing services including internal, external, web app, wireless, and social engineering testing; founded in 2019, with 3 employees, headquartered in Nashville, Tennessee, USA.
Red Siege
Computer and Network Security company specializing in penetration testing and security consulting; 8 employees with 7.1% YoY growth, founded in 2017, headquartered in Longview, Texas, United States. Known for in-depth vulnerability analysis and risk assessment, Red Siege is a trusted industry leader in offensive security services.
Dallas Elite Penetration Testing
Cybersecurity firm based in Dallas, TX, specializing in penetration testing and security assessments; offers full penetration testing services in Dallas, TX.
Relix Security
US-based cybersecurity consulting firm headquartered in Austin, Texas; offers security assessment and penetration testing services with over 20 years of experience serving Fortune 500 companies.
Pentesting Team
Cybersecurity firm specializing in penetration testing services; based in Houston, TX, with explicit offerings including user and internal network penetration tests.
Neuvik
Neuvik is a private cybersecurity company based in Arlington, Virginia, with 4 employees and over 25 years of offensive security expertise. They provide advanced assessments, cyber and AI risk management, and specialized penetration testing services including external, internal, web app, AI, and red team assessments, highlighting their comprehensive pentest capabilities. The company has a high employer rating of 5.0/5.0 from 2 reviews.
GlobalWave Consulting LLC
IT services and consulting company specializing in network penetration testing, vulnerability management, and cybersecurity solutions; 4 employees with 25% YoY growth; founded 2010; headquartered in Virginia Beach, VA.
Digital Warfare Corp
Cybersecurity-focused IT services and consulting firm based in McLean, Virginia; provides penetration testing, security assessments, and cyber defense services with a team of expert analysts. Founded in 2012, employs 6 staff, with a global market presence and active social media engagement.
Stop wasting time on security questionnaires
ResponseHub uses AI to automate your security questionnaire responses. 100% confidence, save days, unblock deals.
LedgerOps
LedgerOps is a cybersecurity firm providing threat feed data products and penetration testing services, including internal, external, and web application pentests; founded in 2018, with 2 employees, headquartered in Arlington, Virginia, United States. The company specializes in zero-day, predictive intelligence feeds to protect Web2 and Web3 companies from evolving security threats.
Haqtify
Cybersecurity firm based in Leesburg, Virginia; specializes in penetration testing including web, iOS, and Android platforms; employs attack-to-protect approach with a team of skilled hackers to identify vulnerabilities and strengthen defenses.
Ampcus Cyber
Cybersecurity company based in Chantilly, Virginia, specializing in penetration testing; CREST-listed for Red team assessments and web application penetration testing, demonstrating advanced offensive security capabilities.
Rhino Security Labs, Inc
Private information services company specializing in penetration testing; focuses on cloud (AWS, GCP, Azure), network, and web application pentesting with manual, deep-dive engagements. Founded in 2013, headquartered in Seattle, WA; 6 employees; $2.5M annual revenue; recognized as a top penetration testing firm with active involvement in security advisories.
Secure Hyperloop
Cybersecurity company specializing in penetration testing, network security assessments, and cloud security evaluations; founded in 2024 with 2 employees, headquartered in Sheridan, Wyoming, USA. Uses real-world techniques to identify and mitigate vulnerabilities, providing comprehensive protection.
NetSafety
Cybersecurity consulting company specializing in information security audits, compliance, and penetration testing; based in Sofia, Bulgaria, with 2 employees since 2009; offers network and web application pentests, data recovery, incident response, and compliance preparation.
IQ Security
IQ Security is a Bulgaria-based IT Services and IT Consulting firm specializing in information security testing, including network and web application penetration testing; 3 employees with 20% monthly growth, headquartered in Poduyane, Sofia.
Alb Cyber Guards
German cybersecurity firm based in Albstadt, Baden-Württemberg; offers professional IT security analysis and penetration testing services, including web application pentests, with a focus on identifying vulnerabilities and protecting digital assets.
ICT PROTECT
Cybersecurity and information security management company based in Greece; 6 employees with 40% YoY growth, founded in 2012. Specializes in penetration testing, risk assessment, GRC consulting, GDPR compliance, and business continuity, with confirmed penetration testing services and a focus on tailored security solutions.
ISGroup SRL Worldwide
IT security and consulting firm specializing in penetration testing, security consultancy, and cybersecurity services; 3 employees with 50% YoY growth; headquartered in Verona, Italy; offers web application and network penetration testing, with a focus on high-quality security analysis and research.
ISGroup SRL Italia
IT security and consulting firm specializing in handcrafted, manual penetration testing; 6 employees; founded 2005; Verona, Italy; offers high-quality ethical hacking, vulnerability assessments, and secure coding services; global presence with 4,106 monthly visits and ranked #4,079,154 worldwide.
Mobisec
Italian cybersecurity firm Mobisec specializes in mobile and web application security, IoT integration, and cybersecurity consulting; provides penetration testing services including web and mobile app pentests with industry-standard attack simulations; headquartered in Villorba, Veneto, Italy, with verified Italian registration and address.
Zeroday.PRO
Romanian-based cybersecurity company specializing in penetration testing and ethical hacking; offers network penetration testing, vulnerability assessments, and web application security services. Focuses on security evaluations and ethical hacking with a team of expert ethical hackers.
Binary House
Binary House is a Slovak cybersecurity firm specializing in penetration testing, security audits, and vulnerability analysis; founded in 2017, with 2 employees, $584.6K revenue, and based in Bratislava, Slovakia.
Nethemba
Nethemba is a Slovak IT security company specializing in web application security and penetration testing; it has 5 employees, was founded in 2007, and generates about $94.4K annually. The firm offers penetration testing, security audits, RFID security audits, and active security research, distinguishing itself as the only Slovak/Czech provider of RFID security audits.
WHITEHAT
Cybersecurity company based in Auckland, New Zealand; specializes in penetration testing services such as web and mobile application testing; confirmed NZBN registration and physical address in Auckland support NZ-based operations.
Packetlabs
Packetlabs is a Canadian-based private cybersecurity firm specializing in penetration testing; 43 employees, founded in 2011, headquartered in Mississauga, Ontario. It is CREST-accredited and SOC 2 Type II attested, delivering impact-first security assessments with no outsourcing or false positives. The company has a strong web presence with 45,956 monthly visits and ranks #718,442 globally.
3Tenets Consulting - Cybersecurity Penetration Testing Services
Cybersecurity consulting firm specializing in penetration testing and offensive security; 3 employees with a 25% workforce decline YoY; based in Oakville, Ontario, Canada; offers web app testing, cybersecurity assessments, and auditing.
Appsurent Cyber Security
Appsurent Cyber Security is a Canadian private cybersecurity company specializing in manual, adversary-driven penetration testing and security assessments; with 1 employee, founded in 2020, based in Toronto, Ontario, they serve government, fintech, and critical infrastructure clients, focusing on application, API, web, mobile, cloud, and AI security, and are known for uncovering vulnerabilities that automated tools overlook.
Informa Solutions Canada
IT services and consulting company based in Toronto, Canada, founded in 2012 with 2 employees; specializes in cybersecurity, AI, IoT, data analytics, and penetration testing services including web and network security assessments; regional presence in Toronto, Mississauga, Hamilton, and Niagara.
Rootshell Security
Rootshell Security is a UK-based private IT & Services company specializing in vulnerability management and penetration testing; 35 employees with 1.9% YoY growth, founded in 2019, headquartered in Basingstoke, UK. It is a leading provider of Penetration Testing as a Service (PTaaS), combining innovative technology with seasoned professionals to deliver vendor-agnostic security solutions and continuous threat exposure management.
WhiteSec Cyber Security
Cybersecurity company specializing in penetration testing services; based in Mexico with a dedicated Mexican domain (whitesec.com.mx) and social media presence confirming its location.
Rogue Security
Mexican cybersecurity consulting company specializing in information security; provides penetration testing and ethical hacking services, including password cracking simulations via Rogue Kraken.
MXC Security (Singapore) Pte. Ltd.
IT services and consulting company specializing in information security, including penetration testing, vulnerability assessment, and red teaming; based in Hong Kong with 16 employees, founded in 2003, and ranked #10,296,402 globally. Offers expertise in security management, compliance, and privacy consultancy.
McAiden Consulting Co., Ltd.
Cybersecurity firm specializing in penetration testing and security consulting; 10 employees; founded 2022; headquartered in Pak Kret, Thailand; provides cybersecurity services including penetration testing, with 1,308 monthly visits and a global rank of #8,287,719.
Safecloud Co., Ltd.
Cybersecurity company specializing in penetration testing and security assessments; based in Bangkok, Thailand with 2 employees, offering network, application, wireless, code review, and red team services.
Pen Test Expert Malaysia
Cybersecurity firm based in Malaysia specializing in penetration testing services; offers web, mobile, wireless, and security assessments. The company’s homepage explicitly states its focus on penetration testing and hosts dedicated service pages for different testing domains, confirming its expertise in cybersecurity testing.
Solaris Symphony Sdn Bhd
Malaysia-based cybersecurity firm specializing in penetration testing, including web application, Wi-Fi, and red team assessments; focuses on proactive risk identification, threat response, and security defense enhancement.
KAIZEC SDN BHD
Malaysia-based IT services and cybersecurity company specializing in advanced penetration testing and Red Teaming; offers security assessments simulating cyberattacks to identify vulnerabilities; founded in 2023 with 1 employee.
Nuevasys, Inc.
Cybersecurity company based in Makati, Philippines; specializes in penetration testing and offensive security services, emphasizing proactive defense with offerings like web application pentests and 'break your defenses' solutions.
Cybercarve Technologies
Cybercarve Technologies is a cybersecurity company specializing in penetration testing, secure development, and compliance. Founded in 2020 and based in Prakasam, India, it has 10 employees and experienced 700% YoY growth, with services including web and mobile application penetration testing, security monitoring, and cybersecurity training.
Advertise on pentest.fyi
You could be here!
Zyphron Technologies Private limited
Indian IT services and cybersecurity company specializing in penetration testing across web, network, mobile, and cloud platforms; 10 employees with 20% YoY growth; founded in 2024 in India; active in social media.
Bluefire Redteam Cybersecurity
Cybersecurity company specializing in penetration testing and red teaming; featured as Silicon India's top pentesting startup in 2023 with a focus on strengthening organizational defenses. Based in India, with 3 employees, founded in 2020, offering services like vulnerability assessments, cyber security audits, and cyber intelligence.
Secureise Cyber Security Solutions Pvt.Ltd
Cybersecurity company based in Pune, India; specializes in cybersecurity training, consulting, and web application penetration testing services; emphasizes quality training and security solutions.
TG Cyberlabs
TG Cyberlabs is a cybersecurity firm based in India, specializing in security solutions and research; they have 2 employees, founded in 2016, and have secured over 2000 sites. Their core services include web application penetration testing, cloud and network security, vulnerability management, and compliance consulting, with a focus on security as their priority.
Ana Cyber Forensic Pvt. Ltd.
India-based cybersecurity firm specializing in penetration testing and security audits; headquartered in Pune, Maharashtra; CERT-In empaneled; offers web application penetration testing, vulnerability assessments, and information security services.
OwnZap InfoSec
Cybersecurity company specializing in penetration testing, vulnerability assessments, incident response, and cloud security; 13 employees with 42.9% YoY growth; founded 2020; based in Udaipur, India.