Methodology

How we work.
From scope to retest.

A pentest is a serious commitment on both sides. Here's how Facade Offense approaches every engagement, from the first scoping conversation to the 30-day retest.

Methodology / 05 stages

Engagement,
not transaction.

A pentest is a serious commitment on both sides. Here's how we approach every engagement — from first scoping call to 30-day retest validation.

// 01 SCOPE

Scope with intent

Risk-based scoping, not the most expensive option. Mutual NDA. Clear SOW.

// 02 AUTHORIZE

Authorize properly

Rules of Engagement signed. Authorization Letter on file. Cloud provider notified.

// 03 EXECUTE

Test as adversary

Manual methodology, AI-accelerated. Daily comms. Critical findings reported immediately.

// 04 VALIDATE

Validate every finding

No theoretical vulns. Captured evidence. Reproducible exploitation. Auditor-ready.

// 05 RETEST

Retest, included

30-day free retest of Critical and High findings. Most charge for this. We don't.

/// Currently accepting Q3 engagements

Ready to see what's behind
the facade?

Tell us about your environment. We'll respond within one business day with scoping questions and a clear next step. No high-pressure sales pitch.

Request Engagement

How we work.From scope to retest.

Engagement,not transaction.