Sekurno

Sekurno was hired by CloudLinux to conduct regular security assessments, ensure compliance with clients' requirements, and improve their security posture through deep testing. The partnership began with a pilot project where Sekurno outperformed another vendor by identifying security issues previously undetected by external vendors. This led to an annual contract for penetration testing and regular vulnerability assessments. The project resulted in a comprehensive security assessment, with well-documented findings that were actionable for the engineering team. Key deliverables included a penetration testing report, a documented threat model, and a registry of all security tests performed.

For Usersnap, Sekurno was engaged to ensure compliance, identify hidden vulnerabilities, and prove security to enterprise clients. The project began with a penetration test of the web application. Sekurno stood out by going beyond surface-level checks and finding issues that had been overlooked in previous assessments. The final report was of high quality and has been useful in conversations with enterprise partners. Key deliverables included a comprehensive final security report, threat modeling, a registry of all tests performed, a leaked credentials check, and a revised report after follow-up discussions on impact levels.

Coreway.de hired Sekurno to perform a penetration test primarily to meet MDR (Medical Device Regulation) compliance requirements. Sekurno was autonomous and efficient, working with minimal input and delivering quality results. They provided a detailed roadmap and rationale for each testing step, which other vendors failed to provide. The key deliverables included a penetration testing report, threat modeling, and a checklist of all tests performed. Sekurno also clearly explained vulnerabilities and how to remediate them during a Q&A session, proving particularly helpful as Coreway.de was new to backend, web, and mobile security.