Skip to content
sudodudes_
[root@sudodudes ~]# The usual way in

A pentest your auditor accepts. And your engineers don’t resent.

Senior-led offensive testing with an auditor-accepted report, senior-signed findings, and one free retest within 90 days. Fixed-fee, scoped in a 30-minute call, delivered in weeks not quarters.

from £2,950 fixed-fee · full rate card →

$ scope

External

Perimeter testing of everything you expose: services, endpoints, certificates, and the forgotten subdomain. The same estate Perimetr watches continuously — tested hard, once, by hand.

Web & API

OWASP-aligned manual testing of authenticated roles and business logic — the abuse cases an automated scanner cannot reason about.

Cloud & Kubernetes

Control-plane misconfiguration, IAM privilege-escalation paths, and container escape testing across the platforms in scope.

Internal & assumed-breach

Lateral-movement exercises from a foothold inside your network: segmentation validation, credential abuse, and what an attacker reaches on day two.

# a finding does not close until the fix is independently verified — one retest within 90 days is included.

A pentest is a photograph.

It’s accurate the day it’s taken. Most clients bolt Perimetr on after their first report — because the finding that hurts is the one that appears three weeks later.

# rules of engagement

Authorized testing only.

Every engagement runs under a signed scope and rules of engagement: what we may touch, when, and how hard. Consent first, always. It’s not just ethics — it’s what makes our reports usable in front of your auditor and your board.

Talk to us

Scope it in 30 minutes. Test it in weeks.

Bring the auditor’s requirement or the customer questionnaire — we’ll tell you the minimum scope that satisfies it, and the fixed fee, on the call.