Pentesting Providers
Rhino Security Labs logo

Rhino Security Labs

Cloud security penetration testing specialists known for the Pacu AWS exploitation framework and deep expertise across AWS, Azure, and GCP environments.

About

Rhino Security Labs is a penetration testing firm headquartered in Seattle, Washington, that has built a distinctive reputation as a leading specialist in cloud security testing, particularly for Amazon Web Services environments. Founded in 2013 by Benjamin Caudill, the company has become a go-to provider for organizations that need expert assessment of their cloud infrastructure, applications, and configurations. Rhino Security Labs developed and maintains Pacu, an open-source AWS exploitation framework that has become a standard tool for cloud penetration testers worldwide.

Their team's deep expertise in AWS, Azure, and GCP security is demonstrated through regular conference presentations, published research, and tool releases that advance the state of the art in cloud security testing. Beyond cloud, the company provides web application penetration testing, network testing, social engineering, and red team services.

Their approach emphasizes finding real attack paths that could lead to compromise rather than merely identifying individual vulnerabilities. Rhino Security Labs serves mid-market and enterprise clients across technology, financial services, healthcare, and other sectors. Their consultants hold certifications including OSCP, AWS Security Specialty, and GPEN, and the team maintains an active research program focused on cloud security.

Services

Cloud Penetration TestingWeb Application Penetration TestingNetwork Penetration TestingAPI Penetration TestingSocial EngineeringRed TeamingMobile App Penetration Testing

Methodologies

OWASPPTESNIST

Compliance Expertise

SOC 2PCI DSSHIPAANIST CSFISO 27001

Team Activity

Active in CTF competitions
Speaker: Black Hat
Speaker: DEF CON
Speaker: fwd:cloudsec
Open source: Pacu
Open source: CloudGoat
Open source: ccat

Score Breakdown

41/100
Accreditations12/100 (30%)
Reviews0/100 (25%)
Team Activity74/100 (15%)
Experience90/100 (15%)
Service Breadth83/100 (15%)

Details

Headquarters
Seattle, Washington, United States
Founded
2013
Team Size
11-50
Markets
North America
Geography
National

Accreditations

SOC 2

Best For

Mid-MarketStartupEnterprise

Industries

TechnologyFinancial ServicesHealthcare
Visit Rhino Security LabsWrite a Review

Related Providers

Best for Mid-MarketBest for Financial Services
NetSPI logo

NetSPI

Leading penetration testing firm with the Resolve platform for continuous attack surface management, trusted by nine of the top ten US banks.

60
Score
LOCMinneapolis, Minnesota, United States
Web ApplicationNetworkCloud+8
SOC 2ISO 27001CREST
View ProfileVisit Site
Trustwave logo

Trustwave

Global managed security provider with the elite SpiderLabs penetration testing team and deep PCI DSS compliance expertise.

57
Score
LOCChicago, Illinois, United States
Web ApplicationNetworkMobile App+7
PCI QSAISO 27001SOC 2+1
View ProfileVisit Site
Best OverallElite TestersResearch Pioneers
Bishop Fox logo

Bishop Fox

Premier US-based offensive security firm known for elite penetration testers, cutting-edge research, and the Cosmos continuous attack surface management platform.

50
Score
LOCTempe, Arizona, United States
Web ApplicationNetworkMobile App+8
SOC 2OSCP Employer
View ProfileVisit Site
Rapid7 logo

Rapid7

Creators of Metasploit offering enterprise penetration testing integrated with their comprehensive vulnerability management and security operations platform.

50
Score
LOCBoston, Massachusetts, United States
Web ApplicationNetworkMobile App+7
SOC 2ISO 27001
View ProfileVisit Site