What is Pentest.fyi?
Pentest.fyi is a directory platform that catalogs penetration testing companies globally. The platform maintains a database of 7,599 penetration testing service providers across different regions and locations. The directory allows users to search and filter companies based on multiple criteria including geographic region, specific location, company size (number of employees), CVE publication activity, and certifications. Each company listing includes basic information such as company name, location, employee count, and service offerings. The platform features both standard and featured company listings. Company profiles display the types of penetration testing services offered, which may include web application testing, mobile application testing, network testing, cloud-native testing, Kubernetes testing, embedded systems testing, operational technology testing, and other specialized security assessment services.
Pentest.fyi's Core Features
Advanced Search & Filters
Search the directory by region, specific location, company size, certifications, and CVE publication activity to quickly narrow down relevant providers.
Detailed Company Profiles
Each listing shows company name, location, employee count, offered penetration testing services (web, mobile, cloud, OT, embedded, Kubernetes, etc.), and links to the company website.
Certification & CVE Indicators
Filter and identify vendors by widely recognized certifications (ISO 27001, OSCP, CREST, SOC 2, HIPAA, etc.) and whether they publish CVEs, helping assess credibility and capabilities.
Featured Listings & Highlights
Featured company spots and highlighted entries make it easier to discover selected or promoted providers and view short summaries of their specializations.
Submit & Update Company Listings
Vendors can submit or update their profiles to ensure accuracy and visibility; the platform aggregates market data across thousands of providers.