Pentest for Gyms and Fitness Studios
Security for turnstiles, biometrics, member apps, recurring billing and corporate benefit integrations.
Why now
The real pain
Gyms hold biometrics, recurring bank data, photos, weight and measurements — in cheap, multi-tenant systems integrated with Gympass, TotalPass and corporate benefits. Biometric leaks are unrecoverable. And attackers map gyms as entry points into large corporations via enrolled employees.
Applicable regulation
/attack-surface
Vectors we test in academias e estúdios fitness
Every engagement is designed for your environment. The points below are part of our standard playbook for this sector — final scope is adapted to your stack and contract.
Turnstile and biometrics
Fingerprint bypass, card cloning, entry fraud, template replay.
Multi-tenant management system
Isolation between franchisees, unauthorized cross-unit access, data segregation.
Member app
IDOR on workouts, progress, before/after photos, trainer conversations.
Recurring billing and PIX
Improper charges, cancellation, card tokenization security.
Gympass/TotalPass integration
Eligibility validation, check-in fraud, corporate plan abuse.
Wearables and bioimpedance
Health data privacy, measurement integrity, history custody.
/methodology
Genuinely manual pentest
Automated scanners find what's documented. Real attackers find what isn't. 90% of the work is manual — performed by specialists holding OSCP, CISSP, CRTO and GPEN.
01 · Reconnaissance
Target mapping, OSINT, footprint, sector-specific threat modeling.
02 · Discovery
Deep enumeration, complementary scanning, manual exposure identification.
03 · Exploitation
Manual validation with controlled PoC, finding chaining, escalation.
04 · Report
Executive + technical, step-by-step replication, mapped to applicable regulation.
/why-trust
Who has trusted our work
SmartFit (market reference). Sector prioritized in our expansion strategy across southern Brazil, Portugal and Italy.
Technical assessment recognized in highly regulated, mission-critical environments — the pentest that finds what nobody had found before.
Douglas Lopes
Founder · CEO · intrus.io
/faq
FAQ — Academias e Estúdios Fitness
Do you pentest the franchisee or only the network?
Both. We recommend a combination: deep pentest on the franchisor + sample pentest on representative units.
Are biometrics actually sensitive data?
Yes. LGPD art. 5, II. Leaks trigger ANPD notification duty and near-automatic collective moral damages.
/contact
Ready for a serious pentest in academias e estúdios fitness?
Schedule a confidential meeting. Within 48h we'll send a proposal with scope, timeline and pricing.