01
3–6 Weeks
Full-Scope Mission
For mature organizations seeking an unannounced, end-to-end adversary simulation. Testing begins with zero internal knowledge, replicating real external attacker conditions.
- Zero-knowledge starting point
- Full lifecycle validation
- Unannounced to security teams
- Detection & response under pressure
02
2–4 Weeks
Assumed Breach
For organizations focused on assessing internal resilience. If an attacker is already inside — how quickly would your team detect and contain them?
- Defined position of compromise
- Concentrated internal defense testing
- Lateral movement & privilege escalation
- EDR performance under dwell conditions
03
1–2 Weeks
Targeted Simulation
For organizations with a specific risk area requiring focused validation — when a full-scope engagement isn't practical due to timing or operational constraints.
- Scoped risk surface testing
- Rapid validation cycle
- Social engineering, cloud IAM, web app
- One precise, answered question
04
Ongoing
Retainer Model
For organizations whose infrastructure evolves faster than annual assessments can track. Continuous coverage aligned with release cycles and infrastructure changes.
- Monthly or quarterly simulations
- Aligned with deployment cycles
- Sustained resilience validation
- Beyond point-in-time assessment