Skip to main content
A penetration test is a point-in-time security assessment where a qualified third party attempts to exploit the botBrains platform the way a real attacker would. They then report their findings so we can remediate them.

Status

botBrains hasn’t yet commissioned an independent penetration test. We plan to commission an annual third-party test of the application and production network as our security program matures. Until then, we rely on continuous dependency scanning, secure development practices, our Wazuh intrusion detection and SIEM, and provider-level controls as interim measures. See the Certification Roadmap for the status of every standard, and the Vulnerability Management Policy for how we identify and remediate vulnerabilities in the meantime.

Requesting results

Once a test is complete, we share summary results under NDA. To register interest or discuss your requirements, email legal@botbrains.io.