CREST Marketplace

Heretek Ltd is a UK-founded cyber-security services provider with a strong pedigree in penetration testing, Purple-Team exercises, and adversary simulation.

Our consultants include CREST and Cyber Scheme-certified testers with extensive experience supporting the UK defence sector, armed forces and suppliers of Critical National Infrastructure (CNI).

We specialise in helping organisations understand their true exposure to real-world threats by combining offensive testing with defensive insight.
Our Purple-Team approach ensures that every penetration test not only discovers vulnerabilities but also helps the client’s own security teams improve detection, response and resilience.

Heretek delivers a full range of penetration-testing services:

-> External and internal infrastructure testing
-> Application and API security assessments
-> Cloud and hybrid-environment security testing (AWS, Azure, M365)
-> Wireless and remote-access testing
-> Adversary-simulation and red-team exercises for high-assurance environments
-> Specialist assessments for CNI, OT and defence-aligned environments

Our methodologies follow CREST and NCSC CHECK-aligned standards, combining industry-leading tools with deep manual investigation to identify exploitable weaknesses that automated scanners miss.

Engagements are conducted under strict operational-security controls, with dedicated, segregated testing infrastructure for sensitive projects.

Every client receives a clear, prioritised report explaining the vulnerabilities identified, their potential business impact, and practical remediation guidance.
Where appropriate, Heretek provides collaborative Purple-Team sessions to ensure that findings are turned into actionable improvements in detection and incident response.

Whether protecting national infrastructure or strengthening enterprise security, Heretek provides trusted, mission-ready testing services that help organisations reduce risk and enhance cyber-resilience.