• Meeting today's security challenges requires an ambitious team of certified specialists trained to handle any threat. Websec is an industry-recognized leader in providing dynamic, hands-on security solutions for the Web and beyond.
  • Monitor and protect your website against hackers. The automatic detection abilities of a monitoring service can provide the difference between stopping an attack as it happens, and being vulnerable to a huge loss. Click to learn more about our Intrusion Detection Systems solutions.
  • Simple employee negligence accounts for nearly nine in ten occurrences of data breach in the workplace. Get your employees trained in security awareness today.
  • Get your Website security checked today. Don't wait until it's too late – if an actual attack is your first penetration test, the losses you sustain will be all too real!

Who We Are

We are small company focused on helping secure the Web and organization's valuable data. We are based in Victoria, BC, Canada but we have worked with clients from all over the world. We are the best at making remote information security projects work and we would love to keep adding succesfull stories to our list.

Why Choose Us

Our expertise is forged by our continuing commitment to explore the cutting edge of today's security challenges, and the growing roster of our grateful clients is a testament to our ability to design and execute successful solutions.


Penetration Services

A penetration test simulates an attack from outside and provides a rigorous examination of potential and actual vulnerabilities, including software flaws, faulty system configurations, insufficiently robust countermeasures, and more.

Don't wait until it's too late – if an actual attack is your first penetration test, the losses you sustain will be all too real!

Read more

Source code auditing

A source code audit is a systematic examination of the source code of your Web application, in order to reveal vulnerabilities that can lead to potentially debilitating breaches of security, whether accidental or malicious in nature.

A Websec source code vulnerability audit is the first line of defense in keeping you safe and secure.

Read more

Security Monitoring

When your network suffers an attack, you need to know as soon as possible – any delay can result in a data breach, damage to your network, and losses that could prove to be catastrophic.

The automatic detection abilities of a monitoring service can provide the difference between stopping an attack as it happens, and being vulnerable to a huge loss.

Read more

Enterprise training

Simple employee negligence accounts for nearly nine in ten occurrences of data breach in the workplace. An innocent mistake can result in massive losses, not only of money or data, but corporate reputation and customer loyalty.

Network security is too important to leave to chance, get your employees trained in security awareness today.

Read more


Recent From Blog

Attacking Linksys WRT160N router using the "URL Obfuscation in Frames" bug
Using the "URL Obfuscation in Frames" bug to enable remote administration on a Linksys WRT160N router
Posted in linksys routers wrt160n url obfuscation default password basic auth

Do not trust your browser's status bar
Many people rely on the status bar for checking the destination of links, but it has been proven before that it is easy to falsify.
Posted in phishing status bar scam spoofing

egrepping mod_security logs
Useful commands to extract information from your mod_security logs
Posted in security logs mod_security

Last News

Aug 19, 2010
Websec at Campus Party 2010
WebSec was proud to participate in Campus Party Mexico 2010, held from August 10th–16th in Mexico City.

May 10, 2010
The attacks against apache.org
Last month apache.org suffered from a targeted attack against their infrastructure. The Apache Foundation has released the incident report to promote security transparency among more companies.

Last advisories