// offensive security · antwerp, belgium
Expose your vulnerabilities before the bad guys do. NextdoorSEC thinks like the attacker, and beats them to the breach.
// 02 · The Stakes
The threat is not hypothetical and it is not far away. These are the real numbers and real incidents on our doorstep in Belgium.
Average cost of a single data breach
IBM Cost of a Data Breach, 2024
Ransom demanded from Bpost
Belgian postal operator incident
Ransom demanded from the City of Liège
Belgian municipality ransomware
// 03 · The Mission
One discipline, total focus: offensive security. Every engagement is manual, human-led, and ends with a clear path to fixing what we found.
Attack your perimeter the way the internet does.
Assume breach. Then watch how far we get.
Break your app before your users (or attackers) do.
iOS & Android, taken apart by hand.
Continuous visibility into every weak point.
Your people are the perimeter. Let's test it.
Turn employees into a human firewall.
Expert guidance, tailored to your threat model.
// 04 · Live Recon
Type your domain into the console. We'll show you what an attacker sees first, then book a real engagement to map all of it. No agents to install, no commitment.
// 05 · The Arsenal
Our operators hold the offensive certifications that actually mean something: the ones you earn by breaking in, not by passing a quiz.
// 06 · The Crew
NextdoorSEC is run hands-on by its founder, working with a vetted network of specialist ethical hackers. Based in Antwerp, operating worldwide.
Chief Hacking Officer
Aydan Arabadzha is the founder and Chief Hacking Officer of NextdoorSEC. He spends his days on the offensive side of security, finding the holes in systems and applications before real attackers do.
// the network · specialist operators on call
OPERATOR
01
REDACTED
WEB · API
OPERATOR
02
REDACTED
MOBILE · iOS
OPERATOR
03
REDACTED
NETWORK · AD
OPERATOR
04
REDACTED
CLOUD · K8S
OPERATOR
05
REDACTED
SOCIAL · OSINT
OPERATOR
06
REDACTED
RED TEAM
// identities withheld by design · every operator is vetted and under NDA
// 07 · Transmission
We don't do filler testimonials. Here's the signal, straight from the client.
“”
DAMIEN SMITH
Chief Technology Officer · Hairdog
// Dispatches
The NIS2 rules are now in force in Belgium, and a lot more companies are in scope than expect to be. Here is the plain-language version of what you have to do.
Read Field Notes · 20 June 2026They get used as if they mean the same thing. They don't, and confusing the two is how budgets get spent on the wrong kind of security.
Read Field Notes · 10 June 2026Buying your first pentest is mostly about asking the right questions before anyone touches a keyboard. Here is the checklist we wish every new client had.
Read// 08 · Final Approach · GROUND 0km
Run the free scan and see your exposure in 30 seconds. Then let our operators map the rest. The first move is always yours.
