Witches Security was founded with the focus and intent that we wanted to be able to deliver a number of specific services within IT-security. To avoid losing focus the company has three packaged services that we mainly offer. These packages or services are penetration testing, code review, and internal/external security assessment of networks. There are two scenarios that are the absolute most common that we see all the time. The first one is web applications where the customer needs help with getting a grasp of the security level of the application by doing a thorough assessment, with or without source code. The other scenario is that we do a so called assumed breach where one assumes that the attacker has already gotten access to the internal network. That way we can quickly see what type of damage an attacker can do on the internal network, and deliver as much value as possible to the customer.