Best Crest Penetration Testing Singapore

CREST stands for the Council for Registered Ethical Security Testers. It is a recognised international organisation that hands out accreditation for penetration testing. Penetration testing, also known as pen testing, is the act of ethically hacking one’s system to identify issues in their network and detect potential vulnerabilities in security. The purpose being to help mitigate against cyber attacks or develop quick response times to any incidents which may arise.

Not all penetration testing fall under the CREST penetration testing standard. Some organisations may choose to conduct the process of ethical hacking through the use of an unaccredited third party with the same goal in mind.  However, those who choose this method cannot assure the same viability and in-depth analyses of CREST penetration testing which highly cover several of a system’s notable areas compared to different entities, especially ungoverned private organisations which are limited to a certain extent. Here are our top 5 picks for companies which conduct the best CREST penetration testing in Singapore.

Note: This list is strictly not in order.

1. Group8 Cyber

Image Credit: Security Group8

Group 8 is located right here in Singapore and is physically situated in the perfect area to take action against notable neighbouring cities within South East Asia. The organisation focuses by first gathering intelligence on any threats and launching an offensive against it. Their area of expertise mainly being companies within industries involving essential infrastructure, financial technology, government bodies, and e-commerce. The Veterans of the organisation are CREST certified when it comes to penetration testing and employ secure internal infrastructure.

One of the notable areas in which Group 8 has invested heavily in is their research and development department which is always seeking to provide innovative solutions to solve existing issues within the data security industry. The company has gone as far as to create in-house products such as GStacks, Pangea, and Polaris.

Location: Asia Square Tower 2, Marina View, 12, Singapore

2. Tech Security

Image Credit: Tech Security

Tech Security claims to be at the forefront of Singapore’s cybersecurity services. The organisation is currently utilising a framework known as the A2F combined with the use of modern technology in order to secure strong safety parameters. A customer service team is also available around the clock to cater to any issues or queries clients or inquirers may wish to ask.

Their team features individuals who share the common ideals of their company which is to take down bad perps and make the cyber world a safer and friendlier place for all users both new and existing. Its involvement in CREST penetration testing in highly susceptible organisations such as within government sectors among many others, is a testament of its ability to properly secure extremely delicate information against even the greatest of adversaries.

Customer Reviews


I had a really great experience working with Tech Security. As someone who has never had programming experience, they were able to guide me in scoping out the project and efficiently execute their penetration testing for my company’s web application. Would definitely recommend them!


Really swift and professional. Their security consultants were very efficient with their penetration and vulnerability assessment services. Overall, a great fuss-free professional security service experience!

Contact: +65 9438 5437
Location: Wintech Centre , 6 Ubi Rd 1, #04-08, Singapore 408726
Opening Hours: Mon-Fri 9AM-7PM | Closed on Sat & Sun

3. Nettitude

Image Credit: Nettitude

Easily actionable solutions are one of the main focuses of Nettitude when conducting CREST penetration testing. Well aware of how difficult change can be, Nettitude takes into the account an organisation’s structure and the lead times it would take for the said organisation to implement it across the board. Not only within the present condition of the organisation but also towards a company’s future outlook over the next few years, thus providing viable solutions that generate both long term and short term growth.

Nettitude’s team also consist of high-esteemed individuals who are each renowned within their field to assist in listing out an organisation’s strengths and weaknesses. By identifying these factors, their talented team can recommend a much more realistic game plan for creating a safer company through data privacy and information safety.

Contact: +65 3138 1790
Location: Ascent Singapore Science Park, 1#2-05/06 , Singapore 118222
Opening Hours: Mon-Fri 8.30AM-5PM | Closed on Sat & Sun

4. Horangi Cyber Security

Image Credit: Horangi Cyber Security

Horangi Cyber Security is an ISO 27001 certified organisation which has a large number of companies who have undergone CREST penetration testing under their belt. Their portfolio is still rapidly continuing to grow, showcasing the strong branding built since its foundation and the trust customers have when subscribing to their services. The firm prides itself with having built a team consisting of several diverse yet talented individuals experienced in the field of data privacy and information security with no member being able to be thought of as a weak link.

Reputed as one of the best in their field, Horangi is consistently keeping themselves knowledgeable of the dangers of a rapidly changing cyber environment. Their services include CREST penetration testing of web applications, network, web services, wireless, mobile applications, and IOT.

Customer Reviews


One of Asia’s hottest up and coming Cybersecurity firms. They have expertise in both cloud security software with an ensemble of Subject Matter Experts in their services business. Highly recommend !!


Very authentic

Location: WeWork Funan, 109 North Bridge Rd, #05-21, Singapore 179097
Opening Hours: Mon-Fri 9AM-6PM | Closed on Sat & Sun 


Image Credit: ITSEC

Headquartered in the Singapore, and with over a decade of experience when it comes to handling information security, ITSEC is well versed with the risks associated with being attacked from external online sources and have set their sights to becoming one of the world’s leading companies when it comes to cybersecurity services.

Some consumers may assume that ITSEC, who have a golden standard when it comes to its CREST certified penetration testing, is much more expensive compared to its rival counterparts. However, the firm makes an effort not to put its sole focus on maximising efficiency on data security but maximising efficiency when it comes to cutting down unnecessary costs as well.

Contact: +65 3159 1145


Almost all information is now being stored on a computer or online. Digitalisation has brought upon many advancements but there are a number of downsides too.  Security of information has become an increasingly difficult task and can be subject to cyber attacks. Both towards small companies but more so common within large organisations. Prevention has always been deemed better than a cure and that is the basis of why CREST penetration testing has been established and practiced.

More from our blog

See all posts