Blog

Notes from the engagement, not the sales deck

Long-form notes on what useful offensive security work actually looks like — methodology, scoping discipline, reporting craft, and the market practices we think need calling out. Written for CISOs, Heads of Security, CTOs, and the engineers and platform teams behind them.

Offensive Security Lessons

Penetration testing buyer guide — what a useful pen test actually produces

A senior-led guide for CISOs and CTOs evaluating their first paid penetration test — what the deliverables should contain, and how to scope honestly.

Amine Cherrai 3 June 2026

Penetration testing buyer guide — what a useful pen test actually produces