How We Work

Engagement Models

Structured around your objectives. Each model is calibrated to your security maturity, operational risk tolerance, and the level of validation your board or regulators require.

01 3–6 Weeks

Full-Scope Mission

For mature organizations seeking an unannounced, end-to-end adversary simulation. Testing begins with zero internal knowledge, replicating real external attacker conditions.

  • Zero-knowledge starting point
  • Full lifecycle validation
  • Unannounced to security teams
  • Detection & response under pressure
02 2–4 Weeks

Assumed Breach

For organizations focused on assessing internal resilience. If an attacker is already inside — how quickly would your team detect and contain them?

  • Defined position of compromise
  • Concentrated internal defense testing
  • Lateral movement & privilege escalation
  • EDR performance under dwell conditions
03 1–2 Weeks

Targeted Simulation

For organizations with a specific risk area requiring focused validation — when a full-scope engagement isn't practical due to timing or operational constraints.

  • Scoped risk surface testing
  • Rapid validation cycle
  • Social engineering, cloud IAM, web app
  • One precise, answered question
04 Ongoing

Retainer Model

For organizations whose infrastructure evolves faster than annual assessments can track. Continuous coverage aligned with release cycles and infrastructure changes.

  • Monthly or quarterly simulations
  • Aligned with deployment cycles
  • Sustained resilience validation
  • Beyond point-in-time assessment

Not sure which fits

The conversation starts with your objectives.

Not a template. Not a scope call. A direct conversation about your environment, your adversaries, and what you need to know before they find a way in.