Vendor Validation
We Validate Your Security Investment
Pick your vendor. We test whether it actually stops attacks.
Sherlock Forensics offers independent security vendor validation testing starting at $5,000 CAD. We test whether your security products actually stop real attack techniques in your specific environment. Using our ShadowTap platform for internal network testing, we simulate adversary techniques against your deployed configuration and document what works, what fails and what needs tuning. We validate Palo Alto Networks, SonicWall, Fortinet FortiGate, Cisco ASA/Firepower/Meraki/ISE, Palantir Foundry, CrowdStrike Falcon, SentinelOne, Sophos, Check Point and Zscaler. Comprehensive validation with full internal and external testing is available at $12,000 CAD. Not listed? We test any security product.
Choose Your Vendor
Security Vendor Validation Services
Palo Alto Networks
App-ID rules, SSL decryption bypasses, zone protection, GlobalProtect VPN and Threat Prevention. 10,000 rules. How many work?
SonicWall
Default admin credentials, outdated firmware, DPI-SSL gaps, GMS misconfiguration and SSLVPN exposure. 500K+ networks. Most never tested.
Fortinet FortiGate
FortiOS defaults, SSL VPN exposure with CVE history, web filter bypasses, FortiGuard subscription gaps and VDOM segmentation weaknesses.
Cisco ASA, Firepower, Meraki and ISE
ASA defaults, Firepower not in enforcement, Meraki permissive defaults, ISE posture gaps and cross-platform policy inconsistencies.
Palantir Foundry
Access control, data pipeline security, API security, ontology permissions and network segmentation. Palantir sees everything in your data. Who sees everything in Palantir?
CrowdStrike Falcon
EDR blind spots: fileless attacks, memory-only payloads, LOLBins evasion, credential dumping and lateral movement from unmanaged devices.
SentinelOne
Ransomware simulation, lateral movement detection, rollback effectiveness, policy exclusion gaps and autonomous protection validation.
Sophos XG, XGS and Intercept X
Synchronized Security configuration, web filtering gaps, SSL inspection defaults, IPS coverage and endpoint-firewall integration.
Check Point NGFW, Harmony and CloudGuard
Blade licensing gaps, policy ordering issues, SmartConsole sync, threat prevention profiles and CloudGuard posture drift.
Zscaler ZIA and ZPA
Split tunnel bypasses, PAC file misconfigurations, private access policies, SSL inspection exceptions and client tamper protection.
Why Validate
Your Vendor Secures the Product. You Configure the Product.
Configuration Is Everything
Every security product can be misconfigured. Default settings prioritize ease of deployment over maximum security. Exclusions accumulate. Licenses lapse. Policies drift. The product your vendor sold you is not the product running on your network today. Independent validation reveals the gap between intended security and actual security.
Vendor Tests Are Not Independent
Vendor-provided testing tools test whether the product detects its own test patterns. That is a trivially easy test. We use real attack techniques, real tools and a real rogue device on your network via ShadowTap. If your security product catches us, it will catch a real attacker using the same methods.
Fixed-Price, No Upsell
We do not sell, resell or partner with any security vendor. We have no incentive to tell you your product fails so we can sell you a different one. We have no incentive to tell you it works when it does not. We report what we find. Standard: $5,000 CAD. Comprehensive: $12,000 CAD. No surprises.
Any Vendor
Not listed? We test any security product.
If your vendor is not listed above, contact us. We validate any security product: firewalls, EDR, NDR, SIEM, SOAR, ZTNA, CASB, DLP, email security and cloud security platforms. Same methodology, same pricing, same independence.
Contact UsReady to Validate Your Security Investment?
Tell us what vendor you run and we will scope a validation assessment. Free scoping call, fixed-price quote, testing typically completed within 5-10 business days.
Call 604.229.1994- Phone
- 604.229.1994
- Burnaby Office
- Burnaby, BC, Canada
- Coquitlam Office
- Coquitlam, BC, Canada
- Related Pages
- ShadowTap Platform · NDR Validation · Darktrace Testing