Top pentesting companies in Indonesia, curated for you.

Ditch the guesswork, we've curated a list of top pentest services companies in Indonesia based on reviews, PTaaS capabilities, platform offerings & more. Pentest is a business critical decision, choose the right platform with our research.

Top pentesting companies in Indonesia.

Astra Security

5 stars5 star border

Astra Security is a leading penetration testing company specializing in protecting websites and businesses online. Their comprehensive suite of services includes (VAPT) for a wide range of digital assets, including websites, web apps, mobile apps, cloud infrastructure, network devices, and emerging technologies like blockchain.

Schedule a demo
Pricing starts at:
$1,999/yr
Core Features
Vulnerability scanner
Pentest by security experts
Scan behind login
CI/CD integration
False positives (vetted)
Pentest Report

PT Neotech Cakrawala

5 stars5 star border

PT Neotech Cakrawala is a cybersecurity firm, focusing on pentesting for startups, midsize companies, and enterprises to improve their security. They provide Black Box, Grey Box, and White Box testing, helping businesses effectively manage security risks.

Pricing:
Available on demand.
Core Features
Vulnerability scanner
Pentest by security experts
Scan behind login
CI/CD integration
False positives (vetted)
Pentest Report

ITSEC Group

5 stars5 star border

ITSEC offers information security services like penetration testing, red teaming, vulnerability assessments and security audits. Their specialty lies in fortifying company security by mitigating cybersecurity risks.

Pricing:
Available on demand.
Core Features
Vulnerability scanner
Pentest by security experts
Scan behind login
CI/CD integration
False positives (vetted)
Pentest Report

Widya Security

5 stars5 star border

Widya Security specializes in penetration testing. Seasoned professionals use cutting-edge techniques to detect and exploit systems' vulnerabilities to enhance cybersecurity, meet compliance, and safeguard data.

Pricing:
Available on demand.
Core Features
Vulnerability scanner
Pentest by security experts
Scan behind login
CI/CD integration
False positives (vetted)
Pentest Report

Digiserve

5 stars5 star border

Digiserve by Telkom Indonesia is a firm focused on ICT Managed Solutions providing comprehensive, secure network infrastructure service, improved agility, visibility, and cost reduction while simplifying Wide Area Network.

Pricing:
Available on demand.
Core Features
Vulnerability scanner
Pentest by security experts
Scan behind login
CI/CD integration
False positives (vetted)
Pentest Report

Manage pentests & access all your
assets under one roof.

Unify & simplify pentesting with Astra's PTaaS platform. Manage all assets - web & mobile apps, cloud, networks, and APIs - from one dashboard. Explore essential pentesting types and identify, validate, and retest vulnerabilities for total security.

Web App Pentest

An offensive web app pentest that exploits vulnerabilities beyond traditional CVEs with a focus on business logic vulnerabilities & privilege escalation attacks on the web apps.

Read More

Mobile App Pentest

In-depth MAST (Mobile Application Security Testing) for your Android and iOS applications to uncover OWASP Mobile Top 10 vulnerabilities and beyond.

Read More

API Pentest

Expert led API discovery, scanning and exploiting to reveal every possibly vulnerability in your APIs. Test against OWASP API Top 10 and discover shadow APIs.

Read More

Cloud Pentest

Evaluate risks, identify vulnerabilities specific to your cloud, and get targeted remediation strategies.

Read More

Network Pentest

Detect and plug every leak with our comprehensive network penetration testing services. Set up impenetrable safeguards at every stage.

Read More

Generate Customized Pentest Reports.

Generate in-depth vulnerability reports with detailed

steps for remediation and lightning-fast custom

formats for execs & developers.

See Astra's continous Pentest platform in action

Take a Product Tour

Security compliances in Indonesia requiring continuous pentests.

ISO 27001

ISO 27001 is a global standard for managing information security for financial data, intellectual property, and employee information. Compliance is ensured with regular audits. ISO 27001 compliance builds trust and offers a competitive edge.

SOC 2

SOC 2 focuses on data security to secure company and client privacy. It involves five trust principles, regular audits. SOC 2 compliance ensures business continuity, and underlines the importance of cybersecurity experts collaboration.

GDPR

GDPR is applicable to Asian companies processing personal data of EU citizens. It sets strict data protection standards like obtaining data consent, ensuring data anonymization, notifying about breaches and appointing a data protection officer.

How to select the right pentest company in Indonesia?

Uses Right Mix of Vulnerability Scans & Penetration Tests 

Choose a pentest company that blends automated in-depth vulnerability scans with expert led manual pentesting to offer a holistic view of your security posture. The vulnerability scans ensure the app is scanned through depth of vulnerabilities, the pentest ensures real world simulation of attack using found vulnerabilities.

Astra does it all, try Astra

Offers Continuous Ongoing Vulnerability Scanning

Focus on penetration testing companies that offer mature vulnerability scanners with scheduling, CI/CD, scan behind login features & other workflow integrations. A continuous scanner ensures you’re not left high and dry beyond until the next pentest.

Astra does it all, try Astra

Deep Understanding of Compliance Pentesting

Prioritize pentest providers with built-in compliance focused scans and past experience. Ensure they offer continuous scanning to guarantee year-round compliance with PCI-DSS, HIPAA, GDPR, APP, and other data privacy regulations for your assets.

Astra does it all, try Astra

Industry Recognized Pentest Certificates

Choose penetration testing companies that provide custom reports and Safe-to-Host pentest certificates after rigorous rescans. These publicly verifiable certificates help demonstrate your dedication to robust security for your partners and customers. 

Astra does it all, try Astra

Vulnerability Management Capabilities

Prefer pentesting companies that offer end-to-end vulnerability management capabilities, exhaustive reports with vulnerability details, mitigation steps and comprehensive rescans to verify the patches. 

Astra does it all, try Astra

Developer Friendly Platform

Prioritize companies that offer CXO-friendly dashboards with real-time updates, progress reports, user management capabilities, and seamless integration with your CI/CD pipeline from start to finish. Effortless progress tracking via Slack and Jira can also simplify tasks for CXOs.

Astra does it all, try Astra

Has Certified & Experienced Pentesters

Focus on penetration testing providers with experienced security analysts and penetration experts. OSCP certifications and at least 3+ years of experience pentesting your specific type of application are some good starting points. 

Astra does it all, try Astra

With Astra on your side, you'll never be in the news for wrong reasons.

Recent cyber attacks in Asia.

G-20 Website Cyberattack

G-20 summit's official website, hosted by India, experienced an organized cyberattack. This attack involved 1.6 million cyberattacks per minute in a DDoS attempt to crash the site.
The Hindu

Hoya Corporation Cyberattack

Hoya Corporation halted production on March 28 from a system failure from unauthorized server access. They acknowledged the issue two days later and are working with authorities to resume production.
Reuters

Poh Heng Jewellery Data Breach

Poh Heng Jewellery was breached and business disrupted on March 25, compromising members' data. It was reported to the PDPC and SPF by data protection officer, Ezekiel Chin.
Channel News Asia
Manual Pentest
Hacker Style Offensive Pentest
OWASP, SANS, CREST Standards
Industry Certified Pentesters
Verifiable Pentest Certificate
SOC2, ISO27001, HIPAA etc. Compliant Pentest
Continuous Scanner
9300+ Security Tests
CI/CD Integrations
Scan Behind Login Screen
Scan for Emerging Threats
Scan for emerging new threats
Vulnerability Management
Risk Based Prioritization (CVSS)
Potential Dollar Loss Predictor
Executive Reports & Views
Collaborate with Security Engineers
Assign vulnerabilities to engineers
AI Assisted Engine
Business Logic Test Cases
False Positive Triaging
Personal Security Assistant Bot
Chained Attacks Detection
API Test Cases Generation

Here’s why 650+ modern engineering teams
love Astra’s ever evolving Pentest platform.

Trusted by leading security-conscious businesses in Asia.

Antonio

Astra caught our immediate attention with its remarkable pentest efficiency and intuitive dashboard, which empowers us to monitor all security tests conducted on our applications in real-time.

— Antonio Romano, VP of Solutions Engineering, Rebrandly
37
Issues Detected
Read All Reviews

“Astra’s Pentest Suite provides exactly the features we need to maximize the security of the service we provide to our clients. We are impressed by their commitment to continuous rather than sporadic testing and the way in which their technology blends with ours.”

— Wayne Garb, CEO, Ooona
472
Issues Detected
Read All Reviews

We are impressed with Astra's dashboard and its amazing automated and scheduled scanning capabilities. Integrating these scans into our CI/CD pipeline was a breeze and saved us a lot of time. The rapid issue resolution and detailed vulnerability insights from Astra's security engineers empower us to comprehensively safeguard our system."

Ankur Rawal - Co-Founder & CTO Zenduty
55
Issues Detected
Read All Reviews

We use Astra's Pentest to regularly scan our SaaS for vulnerabilities & ensure we're always securing ourselves proactively. Having access to the latest pentest reports helps our sales team close faster by inspiring confidence in potential customers.

Apoorva Verma - Co-founder, Rattle
472
Issues Detected
Read All Reviews

I am very satisfied with the result and the recommendations of the audit report. It was an eye opener. We were able to optimize the security of the app to meet the expectations of our customers."

Olivier Trupiano, Founder & CEO (Signalement)
55
Issues Detected
Read All Reviews

Why should you choose Astra?

Astra Pentest puts you ahead

Our team of pentesters.

3000+

Pentests Done

15+ CVEs

Published by our security experts

2 Million+

Vulnerabilities uncovered in 2023
View Case Studies

Our Credentials

Our team holds a distinguished array of certifications, including OSCP, CEH, eJPT, eWPTXv2, and CCSP (AWS).

Top-rated by our customers
Voted #1
Best Software
Ease of use
Meets Requirements
Quality of Support

Don't cut corners on your security.
Do it right.

Frequently asked questions.

How much does pentest cost in Indonesia?
Plus
What is the timeline of penetration testing?
Plus
What is a vulnerability scanner?
Plus
Why is penetration test required in Indonesia?
Plus
What is PTaaS platform?
Plus
What is Astra's Pentest Certificate?
Plus