Mirage Validate - Request Scoping

Company Info

Assessment Types

Project Details

Review & Submit

Assessment Types

Select the types of penetration testing you require:

Web Application

Comprehensive security assessment of web applications including authentication, authorization, input validation, and business logic testing.

Typically 2.00 days

API/Web Services

Testing of REST, SOAP, and GraphQL APIs including authentication, authorization, input validation, and rate limiting.

Typically 2.00 days

External Network

Assessment of the external network infrastructure, including your public facing assets.

Typically 1.00 days

Internal Network

Assessment of the internal network infrastructure including firewalls, routers, switches, servers, and network segmentation.

Typically 1.00 days

Mobile Application

Security testing of iOS and Android applications including local storage, network communication, and backend integration.

Typically 2.00 days

Cloud Security

Assessment of cloud infrastructure on AWS, Azure, or GCP including IAM, storage, networking, and container security.

Typically 2.00 days

Social Engineering

Assessment of human security through phishing campaigns, vishing, pretexting, and physical security testing.

Typically 2.00 days

Wireless Security

Assessment of wireless networks including WiFi security, rogue access points, and wireless client attacks.

Typically 2.00 days

Code Review/SAST

Static analysis and manual code review to identify security vulnerabilities in application source code.

Typically 2.00 days

Assessment-Specific Questions

Please answer the questions for your selected assessment types to help us provide an accurate quote.

Web Application Questions

Estimated number of unique pages/views

Number of forms/input areas

Authentication complexity

Number of distinct user roles

Number of API endpoints (if any)

Does the application allow file uploads?

Does it process payments?

API/Web Services Questions

Number of API endpoints

API type(s)

Authentication method

API documentation available?

Number of API versions to test

Test rate limiting?

Internal Network Questions

Number of IP addresses in scope

Active Directory environment?

Number of AD domains/forests

Number of network segments/VLANs

Number of critical servers (DC, DB, etc.)

Mobile Application Questions

Target platforms

Number of apps to test

Include backend API testing?

Has offline/local storage features?

Uses biometric authentication?

Uses push notifications?

Estimated third-party libraries

Cloud Security Questions

Cloud provider(s)

Number of cloud accounts/subscriptions

Estimated services in use

Include IAM/permissions review?

Kubernetes/EKS/AKS/GKE in scope?

Serverless functions in scope?

Compliance framework alignment?

Social Engineering Questions

Phishing campaign scope

Include vishing (phone) attacks?

Include physical intrusion testing?

Number of physical locations

Number of custom pretexts/scenarios

Include training materials?

Wireless Security Questions

Number of wireless networks (SSIDs)

Number of physical locations

Enterprise authentication (802.1X)?

Guest network in scope?

IoT/OT devices on wireless?

Include rogue AP detection?

Code Review/SAST Questions

Estimated lines of code (thousands)

Number of programming languages

Review depth

Specific focus areas

Detailed remediation guidance?

Include developer training session?

Project Requirements

Project Description

Scope & Requirements

Preferred Timeline

Budget Range

Additional Notes

Review & Submit

Please review your information before submitting your request.

Company Information

Assessment Types

Web Application

API/Web Services

External Network

Internal Network

Mobile Application

Cloud Security

Social Engineering

Wireless Security

Code Review/SAST

Assessment-Specific Questions

Web Application Questions

API/Web Services Questions

External Network Questions

Internal Network Questions

Mobile Application Questions

Cloud Security Questions

Social Engineering Questions

Wireless Security Questions

Code Review/SAST Questions

Project Requirements

Review & Submit