Three founding pentesters, one uncompromising vision of the craft.
Narok is an offensive cybersecurity firm founded in 2025 in Paris. Its partners are experienced pentesters from a French pure-player firm, who created Narok to embody their own vision of the craft: technical, rigorous, ethical, and genuinely useful to clients.
Help organisations identify their weaknesses before attackers do.
We believe cybersecurity cannot be delegated to automated tools or generalist consultants. It requires professionals who master offensive techniques, capable of thinking like an attacker — and proving it.
That is why Narok is structured around a team of experts who carry out missions themselves, without intermediaries, with methodological rigour grounded in international standards.
« Si vis pacem, para bellum. »
Vegetius · founding epigraph
Four commitments
Technical first
Engagements are run by trained experts, not juniors. No outsourcing, no reselling.
Methodological rigour
OWASP, OWASP Mobile, MITRE ATT&CK, ANSSI. Manual approach — not an automated scan dressed up as an audit.
Operational ethics
Clear scoping, controlled perimeter, transparent communication. No tool or finding is hidden from the client.
Real usefulness
A report must be read, understood and applied. We design it for technical teams and decision-makers.
Conferences & talks.
« Phishing: what happens after the click? »
Live demonstration of an AiTM attack with Microsoft 365 session-cookie capture.
Modern offensive phishing
Overview of the state of the art in offensive phishing simulation.
Ensure peace.
Prepare for war.
A partner replies within 48 hours for an initial technical exchange.