Proof of concept

About

Proof of Concept is a specialized security testing company that offers a range of services to test the security of various systems. The company is experienced in blackbox, whitebox, and greybox testing, as well as reverse engineering, network testing, web application testing, and server hardening. The company's team of professionals have a proven track record in conducting security research and testing in the financial sector, which requires the highest level of security due to the sensitive nature of financial data. Additionally, our team members have extensive experience working in the national security team, where they played a key role in securing the country's IP space and solving some of the most complex incidents in the region. With their expertise and knowledge in security testing, Proof of Concept is committed to providing the highest quality of service to ensure their clients' systems are secure and protected against potential cyber threats.

Contact: security[at]proofofconcept.hr

Previous work

  • Banks
    • Blackbox security testing projects in wide range of programming languages (Pyton, Java, C#..)
    • Physical security test of physical security
    • Complete network security test
    • Reverse engineering and security testing of a desktop applications (mostly Windows and C#)
    • Android application reverse engineering and security testing
  • National security
    • Security test, code review and refactor of (mostly) Python projects
    • Testing and hardening infrastructure with IaC
    • Implementing custom CI pipelines that continuously keep the code as secure as possible
  • Bug bounty
    • Our researchers are continuously working on finding bugs in a different popular services on the internet

Services

  • Web application security test
    • Our professional team will conduct a thorough assessment of your web application using a combination of methodologies. By simulating real-world attack scenarios, we will identify any potential vulnerabilities in your system and provide actionable recommendations to mitigate those risks.
  • Network security
    • Our team will perform a comprehensive network testing to identify any potential vulnerabilities in your network infrastructure. We will then implement industry-standard security measures to secure your network and ensure that your systems are protected against potential cyber threats.
  • Desktop applications
    • Our team will conduct a thorough assessment of your desktop application's security by utilizing a combination of blackbox, whitebox, and greybox testing methodologies. By simulating real-world attack scenarios, we will identify any potential vulnerabilities in your application's code and provide actionable recommendations to mitigate those risks. We will also implement industry-standard security measures to ensure that your desktop application is secure and protected against potential cyber threats
  • Android applications
    • By utilizing reverse engineering techniques, our team can gain a comprehensive understanding of your application's backend and identify any potential vulnerabilities. We will then conduct a thorough assessment to ensure that your backend is secure and protected against potential cyber threats
  • Code security
    • Our team will conduct a comprehensive assessment of your code's security by utilizing a combination of manual and automated testing techniques. We will analyze your codebase to identify any potential vulnerabilities and provide actionable recommendations to mitigate those risks. By implementing industry-standard security measures and best practices, we will ensure that your code is secure and protected against potential cyber threats.