[PERDITION//SEC]Contact
// 00   perdition_security //

Offensive security for the systems you can't afford to lose.

Boutique cybersecurity consulting led by David Sampson — CISSP, CISM, and ten years of breaking and defending production systems. Penetration testing, red teaming, GRC, and AI security, delivered by the practitioner doing the work.

Startup Security AuditAll services
/bin/perdition
perdition@sec:~$  
CISSP  //  CISM
10+ years offensive & defensive
ISO 27001 / 42001 / PCI
// 01   flagship_offer

Startup Security Audit

A two-week, fixed-price security review for funded startups. Web app pentest, external attack-surface scan, cloud configuration review, threat model, and a founder readout — delivered by a senior practitioner with retest included.

// price  $5,000 – $10,000 USD// duration  2 weeks// retest  included
See details & intakeSkip to intake
↓ download sample report (pdf)
  • 1 web application pentest
  • External attack-surface scan
  • Cloud config review (AWS / GCP / Azure)
  • Threat model + founder readout
  • Executive + technical report
  • Free retest after remediation
// flagship_capability

AI Penetration Testing & Red Teaming

Adversarial testing for LLMs, agents, and AI-powered products — prompt injection, jailbreak engineering, agent red teaming, RAG poisoning, and model supply-chain review. Tested across SMB, enterprise, and global-enterprise systems.

See the practice
  • Prompt injection & jailbreaks
  • Agent red teaming
  • RAG & retrieval poisoning
  • Tool & function-call abuse
  • Model supply-chain review
  • OWASP LLM / MITRE ATLAS
// 02   capabilities

What else we do.

Five focused practices. One practitioner accountable for the work from kickoff to retest. No subcontractors, no offshore handoffs.

// 01

Penetration Testing

Find what attackers will find — before they do.

// 02

Red Team & Adversary Emulation

Stress-test detection and response against a real adversary.

// 03

Security Consulting & Advisory

Senior judgment, on retainer or per-project.

// 04

GRC — ISO 27001, ISO 42001, PCI

Compliance that doesn't slow engineering down.

// 05

AI Penetration Testing & Red Teaming

Adversarial testing for LLMs, agents, and AI-powered products.

// 03   how we work

Senior judgment. No pyramid.

Most consultancies sell you a partner and deliver a junior. Every Perdition Security engagement is led — and largely executed — by a principal consultant. You get faster engagements, sharper findings, and a report your engineers will actually read.

// 01_scope
Half-hour scoping call. Fixed price. No mystery line items.
// 02_execute
Manual-led testing, daily comms, exploitable findings only.
// 03_report
Tech detail for engineers, exec summary for the board, retest included.
// 04_followup
Optional retainer for advisory, retests, and ongoing work.

Need something different?

Custom pentests, red team engagements, GRC, and AI security work — scoped to your situation.

Open a conversation