intrus.io
Industry & Manufacturing

Pentest for Industry and Manufacturing

Offensive security in factories, ERP, MES, industrial IoT and automated production lines.

Request an industrial proposalSee vectors
90% manual · 10% automated
OSCP · CISSP · CRTO · GPEN
BR · PT · IT · ES · MA · US · AU
OWASP · MITRE · PTES · NIST

Why now

The real pain

Industry 4.0 connected everything — and exposed everything. A line stopped by ransomware costs production hours that don't come back. An attack can tamper with recipes (pharma, food) with public-health consequences.

Applicable regulation

ISO 27001IEC 62443ANVISA (alimentos/farma)LGPD

/attack-surface

Vectors we test in industry & manufacturing

Every engagement is designed for your environment. The points below are part of our standard playbook for this sector — final scope is adapted to your stack and contract.

01

MES / SCADA

Manufacturing execution system and shop-floor supervision.

02

Line PLCs

Audit of Siemens, Rockwell, Schneider PLCs in automated lines.

03

Collaborative robots

Cobots, AGVs, vision systems and functional safety.

04

Industrial ERP

SAP PP/MM/QM, ERP-MES-OT integration.

05

Recipes and BoM

Formulation integrity and bill of materials.

/methodology

Genuinely manual pentest

Automated scanners find what's documented. Real attackers find what isn't. 90% of the work is manual — performed by specialists holding OSCP, CISSP, CRTO and GPEN.

01 · Reconnaissance

Target mapping, OSINT, footprint, sector-specific threat modeling.

02 · Discovery

Deep enumeration, complementary scanning, manual exposure identification.

03 · Exploitation

Manual validation with controlled PoC, finding chaining, escalation.

04 · Report

Executive + technical, step-by-step replication, mapped to applicable regulation.

/why-trust

Who has trusted our work

ArcelorMittal and large industrial clients.

Caixa Econômica Federal
Banco BMG
iFood
ArcelorMittal
Multibanco
Polícia Federal
Fórmula 1
OpenFinance

Technical assessment recognized in highly regulated, mission-critical environments — the pentest that finds what nobody had found before.

DL

Douglas Lopes

Founder · CEO · intrus.io

/faq

FAQ — Industry & Manufacturing

Can pentest stop the line?

No. We work in homologation environments or pre-agreed maintenance windows.

Can you test PLC without shutting down?

Yes. Passive protocol analysis (Modbus, Profinet, EtherNet/IP) and PLC replica testing.

/contact

Ready for a serious pentest in industry & manufacturing?

Schedule a confidential meeting. Within 48h we'll send a proposal with scope, timeline and pricing.

Talk to usSee other sectors

Other sectors we cover

/saude

Hospitals & Clinics

/planos-saude

Health Insurers

/fintech

Fintechs

/bancos

Banks & Credit Unions

/consorcios

Consortium Administrators

/seguros

Insurance & Brokers