Bluedog Security offers a manual penetration testing service for web applications, APIs, mobile applications, and office networks. The service is conducted by human testers rather than relying solely on automated scanning tools, with a focus on identifying business logic flaws, authorization weaknesses, and authentication vulnerabilities that automated tools typically miss. Testing coverage includes: - Web application penetration testing - Mobile application penetration testing - REST/API endpoint penetration testing - Active Directory penetration testing - Office networks and endpoints The service follows OWASP and industry-standard methodologies. Bluedog is ISO 27001:2022 certified and an accredited VAPT vendor, and holds team certifications including CISSP, GIAC, OSCE, OSCP, OSWE, and CREST. Deliverables include: - A password-protected PDF vulnerability report with management summaries and remediation guidance - Business risk-focused findings that consider chained attack scenarios, not just individual vulnerabilities - A post-test debrief session with the client's technical team - A post-remediation retest of identified vulnerabilities - A certificate of completion upon successful remediation The service is available to businesses in the Philippines and has been an authorized vendor for Globe Telecom. Bluedog positions reports around business impact, examining how individual vulnerabilities can be combined into chained attacks to assess overall organizational risk.