Security

Security at CyberAssistant

As a security testing platform, we hold ourselves to the highest security standards. Here is how we protect your data and our infrastructure.

Infrastructure Security

• Data Isolation — Complete database separation per tenant with no shared data access
• Encryption — All data encrypted in transit (TLS 1.3) and at rest (AES-256)
• Access Control — Role-based access control with principle of least privilege
• Audit Logging — Comprehensive activity logging for all administrative actions

Application Security

• Authentication — Multi-factor authentication (2FA) support for all accounts
• SSO — SAML 2.0 and OpenID Connect integration with enterprise identity providers
• Input Validation — Server-side validation on all user inputs
• Credential Storage — Identity provider credentials encrypted using Laravel encryption

Deployment Options

• Cloud — Hosted on secure cloud infrastructure with automated backups
• On-Premise — Deploy on your own infrastructure with Docker for complete control

Responsible Disclosure

If you discover a security vulnerability, please contact us responsibly. We appreciate your help in keeping our platform secure.