We are a small team of experts with over a decade of experience bringing security to the marketplace
- I need a web application security assessment
- Web Security Dojo: free training environment
- I need a bid or proposal
- I would like training or a speaker for an event
News & Events
- Interop New York 2014 - Sept. 29, 2014
- Web Security Dojo 2.0 Released
- Upcoming training in Singapore - Nov. 2014.
Maven Security was interviewed in late September 2014 by InformationWeek: 4 Penetration Testing Tips
Recognized As Leading Security Consultancy
Maven Security was recently named 20 Most Promising Enterprise Security Consulting Companies by CIO Review.
Honor + Knowledge = Security™
Maven Security Consulting Inc. is a vendor-independent security consulting firm that helps companies secure their information assets and digital infrastructure by providing a wide range of customized consulting and training services.
Services include ethical hacking; web application security testing; network security architecture reviews; training; expert testimony (civil and criminal); and architecture analysis, design, and security testing for Next Generation Networks (NGN), including VoIP.
Maven Security has a global client base across the US, Canada, Europe, Asia, and Australia. We help customers in many market sectors including utilities, aerospace, government, banking, insurance, software, and recreation.
Maven Security is a privately held company established April 2001 and headquartered in Delaware, United States.
Maven has always had a commitment to giving back to the community, and that has lead to a number of “firsts” we are proud of.
Achilles was the first publicly released general-purpose web application security audit tool. While quite basic by today’s standards, it was transformative to have an easy to use, publicly available tool to intercept and modify web traffic.
WebMaven was the first interactive web application that emulated various security holes. This was an important tool for training and self-learning as a way to safely & legally practicing security audit techniques, as well as benchmarking and vetting audit tools. It was adopted by the Open Web Application Security Project as OWASP WebGoat v1.
Another industry first: An open-source self-contained training environment for web application security penetration testing. The Dojo contains everything needed to get started – tools, targets, and documentation, all preconfigured for ease of use. There are thousands of downloads of this project every month, and many people have used it to increase their knowledge of web security.