Services
What is the difference between a vulnerability assessment and a penetration test?
A vulnerability assessment identifies and catalogs potential weaknesses in your systems. A penetration test goes further — we actively attempt to exploit those vulnerabilities to determine real-world risk. Think of the assessment as a map and the penetration test as the actual journey.
What types of penetration testing do you offer?
We offer external, internal, wireless, web application, API, social engineering, mobile application, and red team assessments. Each targets a different attack surface and can be tailored to your specific needs.
What tools do you use?
We use a proprietary toolset composed of in-house and open source tools capable of detecting over 1000 vulnerabilities. Results can be compared against tools such as Nessus or ISS upon request.
How long does a typical engagement take?
Timelines vary by scope. External tests on a small IP range can be completed in a few days, while comprehensive internal or red team assessments may take one to two weeks. We provide a clear timeline before starting.
Will the testing disrupt our operations?
We coordinate all testing windows with your team and can schedule assessments during off-hours to minimize impact. Our methodology is designed to be thorough while remaining respectful of your production environment.
Do you offer remote and on-site testing?
Yes. External and web application assessments are conducted remotely. Internal, wireless, and red team assessments typically require on-site presence. We serve clients nationwide.
Pricing & Billing
Why are your prices so low compared to the industry?
We operate with minimal overhead — no licensing fees, no sales teams, no bloated infrastructure. You pay only for the expertise and time required to complete your project.
Do you offer fixed pricing?
Yes. All engagements are quoted with fixed, no-risk pricing before work begins. There are no hidden fees or surprise charges.
What if I find a better price elsewhere?
Send us the competing proposal and we'll beat it by 50%. We're confident in the value we provide.
What does the 100% penetration guarantee mean?
If we are unable to gain access to your network during an Advanced Security Package engagement, the test is completely free. We've never had to honor this guarantee.
Do you offer discounts for nonprofits?
Process & Methodology
What does the engagement process look like?
It starts with a project proposal to understand your network topology. We then sign a mutual NDA and scope agreement, perform the assessment, and deliver a detailed report with findings and remediation steps.
What deliverables will I receive?
Every engagement includes a comprehensive report with an executive summary, technical findings, risk ratings, proof-of-concept evidence, and prioritized remediation recommendations.
Do you provide a retest after vulnerabilities are fixed?
Retesting is available and recommended. Contact us for retest pricing — it's typically offered at a reduced rate compared to the initial assessment.
How do you handle sensitive data discovered during testing?
All findings are treated as strictly confidential. We sign mutual NDAs before every engagement and securely destroy all test data after the final report is delivered.
Compliance & Certifications
Can your assessments help with compliance requirements?
Yes. Our reports support compliance frameworks including PCI DSS, SOC 2, HIPAA, ISO 27001, and NIST. We can tailor our assessments to meet specific regulatory requirements.
How often should we conduct penetration testing?
We recommend at least annually, or after any significant infrastructure change. Many compliance frameworks require annual testing as well.
General
How is my information protected?
Our privacy policy ensures all collected information is used only for internal purposes. We do not track users, store cookies, or engage in spam.
What research does Clearhats perform?
Our focus is network vulnerability research, intrusion detection, and forensic traffic analysis. We actively contribute to the security community.
Why don't you publish client logos?
We value the privacy of our clients. Discretion is far more valuable to us than name-dropping. We could feature impressive logos, but we choose confidentiality over marketing.
What if I've been breached and need immediate help?