Gain continuous protection and insights with our on-demand penetration testing services.
Stingrai is an offensive cybersecurity firm based in Toronto, Canada, founded in September 2022. Stingrai is also a certified vendor of “Ontario Innovation Center” for Offensive Cybersecurity consulting services. We specialize in delivering top-tier cybersecurity consulting services to businesses of all sizes, from small enterprises to large corporations, at competitive rates. Our elite team of white-hat hackers, all thoroughly vetted and subjected to criminal background checks, leverages cutting-edge Pentest-as-a-Service (PTaaS) to simulate real-world attacks, identifying vulnerabilities before they can be exploited by malicious actors. With a proven track record of helping companies fortify their defenses and secure critical data, we provide tailored consulting solutions to meet your specific security needs.
Stingrai is dedicated to helping organizations secure their digital assets against cyber threats. Our team of ethical hackers are highly skilled at identifying vulnerabilities in your systems, ensuring your business is protected from cybercriminals.
As part of our service, we provide complimentary access to our proprietary PTaaS platform, offering your team the tools and support needed to efficiently address and remediate all identified vulnerabilities.
We continuously innovate to stay ahead of emerging threats.
We uphold the highest ethical standards in everything we do.
Our clients’ security is at the heart of our operations.
Arafat Afzalzada
Co-Founder and Team Lead
An accomplished leader in offensive cybersecurity with 9 years of expertise in penetration testing across diverse domains, including network, web applications, and social engineering.
Certificates: CISSP, PCNSE, CCNA (R&S), ITIL
Mohammad Waqas
Co-Founder and Penetration Tester
With over 3 years of experience as an offensive security professional, Waqas is an established penetration tester for web application, ERP, network, embedded system and IoT device.
Gustavo Roberto
Team Lead Penetration Tester
With 14 years of experience in offensive security, Gustavo specializes in web application, network, active directory, and red teaming operations.
Certificates: CRTO
Accomplishments: Zero-day vulnerability reported to Microsoft Copilot.
Projects: PEV (PE file analysis Toolkit), Aleph (Malware Analysis Tool) and several custom exploit tools, including goshock, gotigate and goc.
Alan Cordeiro
Team Lead Penetration Tester
Alan has over 20 years of expertise in penetration testing and red teaming. His speciality spans across various domains such as network, web application, and API.
Certificates: OSCP, CRTO, CRTP, eWPTX
Accomplishments: 4 CVEs Published, CVE-2021-21495, CVE-2019-14755, CVE-2021-3005, CVE-2021-21494
Projects: Cloud Confusion (C2), Monintron (dark web monitor), Powersub (subdomain enumerator), mk-auth exploit, OpenVPN-AD-Check, and a commonly used Malware Toolkit.
Abbas Rajabpour
Penetration Tester
Abbas has over six years of experience in offensive cybersecurity, specializing in network and web application penetration testing.
Daniel Gladys
Penetration Tester
Gladys brings 5 years of expertise in network, web application and WiFi penetration testing.
Certificates: SSCP, eJPT, PEH, Jr. PT, CompTIA Sec+