main logo icon

Who We Are

Continuously Simulating Cyber Attacks to Strengthen Your Defenses

Trusted Partners

Stingrai specializes in Penetration Testing and is a certified vendor of the Ontario Centre of Innovation for Offensive Cybersecurity. We have performed penetration testing for businesses of all sizes. Stingrai team members have been recognized by numerous Fortune 500 companies for identifying and reporting vulnerabilities in their products.

Our Mission & Values

Stingrai is dedicated to helping organizations secure their digital assets against cyber threats. Our team of vetted white-hat hackers are highly skilled at identifying vulnerabilities in your systems, ensuring your business is protected from cybercriminals.

As part of our service, we provide complimentary access to our proprietary PTaaS platform, empowering your developers to efficiently address and remediate all identified vulnerabilities.

Innovation

We continuously innovate to stay ahead of emerging threats.

Integrity

We uphold the highest ethical standards in everything we do.

Customer Focus

Our clients’ security is at the heart of our operations.

Meet Our Experts

Arafat Afzalzada photo

Arafat Afzalzada

Founder

Bachelor’s degree in Computer Science with over 10 years of experience in Penetration Testing.

Certifications
CISSPPCNSECCNAITIL
Accomplishments
Presented talks at MAX Cybersecurity (Art of Attack and Defense) and at ISACA Toronto Chapter.
linkedin iconView LinkedIn Profile
Gustavo Roberto photo

Gustavo Roberto

Team Lead Penetration Tester

Bachelor’s degree in Computer Science with over 15 years of experience in Penetration Testing and Red Teaming.

Certifications
CRTOCRTPCRTA
Bug Bounty Hall of Fame
Bug Bounty Hall of Fame: PicPay, Arlo, C6 Bank, Sophos, Telekom
linkedin iconView LinkedIn Profile
Ivan Spiridonov photo

Ivan Spiridonov

Team Lead Penetration Tester

Bachelor’s degree in Information Technology with over 15 years of experience in Penetration Testing, Exploit Development and Red Teaming.

Certifications
OSCE³OSEDOSWEOSCPCRTLOSEPCRTECRTO
Published Vulnerabilities
(10 CVEs): CVE-2025-50674, CVE-2024-32136, CVE-2023-0830, CVE-2024-0365, CVE-2024-0399, CVE-2024-0405, CVE-2024-0566, CVE-2024-30240, CVE-2024-31370, CVE-2024-33911
linkedin iconView LinkedIn Profile
Ugur Koc photo

Ugur Koc

Senior Penetration Tester

Master’s degree in Cybersecurity with over 13 years of experience in web, mobile, network penetration testing, and red-team operations.

Certifications
OSWEOSCEOSCPOSWPGMOBC-AI/MLPenCREST-CPSA
Published Vulnerabilities
(10 CVEs): CVE-2015-2347, CVE-2015-2346, CVE-2015-6929, CVE-2015-4912, CVE-2015-8687, CVE-2016-4392, CVE-2017-1279, CVE-2017-1204
Bug Bounty Hall of Fame
Bug Bounty Hall of Fame (500+ vulnerabilities reported): Oracle, IBM, HP, Kaspersky, Nokia, Alcatel-Lucent, Huawei, ZTE, Bosch, Adobe and more.
linkedin iconView LinkedIn Profile
Armaan Pathan photo

Armaan Pathan

Senior Penetration Tester

Master’s degree in Information Technology with over 10 years of experience in penetration testing, red teaming, and exploit development.

Certifications
OSCPCMSE
Accomplishments
Presented talks at BSides Ahmedabad (Exploiting BurpSuite Upstream Proxy) and at null Dubai (Attacking postMessage).
Bug Bounty Hall of Fame
Bug Bounty Hall of Fame (400+ vulnerabilities reported): Apple, Facebook, Google, Yahoo, US Department of Defense, Quora, Imgur, Ubiquiti, Glassdoor, and more.
linkedin iconView LinkedIn Profile
Omar Hamdy photo

Omar Hamdy

Senior Penetration Tester

Master’s degree in Computer Science with over 5 years of experience in Penetration Testing and Red Teaming.

Certifications
OSCPeWPTXCrest CRTCRTEOSWP
Bug Bounty Hall of Fame
Bug Bounty Hall of Fame: USA-federal-reserve, PaySafe, Zynga
linkedin iconView LinkedIn Profile
Utku Yildirim photo

Utku Yildirim

Senior Penetration Tester

Master’s degree in Cybersecurity over 6 years of experience in Web, Mobile, Network Penetration Testing, and Red-Team operations.

Certifications
OSCEOSWEOSWPCRTO
Accomplishments
Delivered talks at global cybersecurity conferences such as DEF CON and BSides Oslo, covering topics like UAV/GPS spoofing, 5G jamming, LTE redirecting, and SS7 exploitation. His research and contributions have been featured at NATO Locked Shields.
linkedin iconView LinkedIn Profile
Victor Villar photo

Victor Villar

Senior Penetration Tester

Master’s degree in Information Security with over 5 years of experience in Penetration Testing, Exploit Development, and Red Teaming.

Certifications
OSCE³OSEPOSEDOSWEOSCP
Published Vulnerabilities
(3 CVEs): CVE-2024-32369, CVE-2024-32370, CVE-2024-32371
linkedin iconView LinkedIn Profile

Trusted by Industry Leaders

company iconquote icon

Stingrai identified critical vulnerabilities we had overlooked and delivered clear, actionable insights through a user-friendly portal. The real-time continuous testing has given us ongoing confidence in our system’s security.

— IT Director, Shpun Remit

company iconquote icon

The team spent time and effort to understand the business cases and uncover vulnerabilities unique to our business. Testing was completed within the promised timeline and within the budget which is very competitive compared to the market.

— CTO, NetNow Financial Inc.