Bluedog Security offers manual penetration testing and vulnerability assessment services (VAPT) targeting businesses primarily in the Philippines. The service is conducted by certified penetration testers holding credentials such as CISSP, GIAC, OSCE, OSCP, OSWE, and CREST. Testing coverage includes: - Web application penetration testing - Mobile application penetration testing - REST/API interface penetration testing - Active Directory penetration testing - Office networks and endpoints The methodology emphasizes manual, human-driven testing over automated tooling, focusing on business logic bypasses, authorization flaws, and authentication vulnerabilities — particularly in single-page and mobile applications with backend APIs. Engagements follow industry standards such as OWASP and produce a password-protected PDF report that details discovered vulnerabilities, chained attack scenarios, business risk and impact assessments, and management summaries with remediation guidance. Post-test services include: - A debrief session with the client's technical team - A retest of remediated vulnerabilities - A Certificate of Completion for items within the defined scope Bluedog Security holds ISO 27001:2022 certification and is an authorized vendor of Globe Telecom.