We Build It. We Break It.
We Prove It.
We build production software — Rust backends, modern web apps, browser-automation tooling — then break it under authorized penetration testing across web apps, APIs, internal networks, and Active Directory. Security consulting and SEO intelligence draw on the same engineering bench.
Four Service Lines. One Engineering Team.
Every engagement draws on the same deep technical bench — Rust backend engineering, browser-automation tooling, offensive security testing, and real-time SEO intelligence.
Software Development
Production web apps and front-ends — including 3D web — Rust/Axum backends, SSR, and browser-automation tooling. This very site is the exhibit.
Start a project →Penetration Testing
Authorized, scoped offensive testing across web apps, APIs, internal networks, and Active Directory — OWASP Top 10, privilege escalation, lateral movement. Written Rules of Engagement + retest included.
Request a pentest →Security Consulting
Threat modeling, OWASP ASVS gap analysis, secure code review, DevSecOps, and hardening guidance. Pragmatic, defensible, engineering-grounded.
Start a consultation →SEO Intelligence
Real-time browser automation. €500K+ in identified opportunities. Professional consulting-grade analysis that SEMrush & Ahrefs cannot match.
See the full service →Ready to Start?
All engagements begin with a consultation. No obligation — just a direct conversation about what you need.
Get in TouchLatest from Funway
Windows Privilege Escalation: Parent PID Spoofing with SeDebugPrivilege
When the textbook techniques fail, understanding Windows internals saves the day.
Find-HijackDLL: Discovering DLL Hijacking Without Procmon
A pure PowerShell tool for finding DLL hijacking vectors — from the perspective of both the attacker and the defender