How much can South African businesses save by switching to open source software?

Most SA businesses running 10-50 users can save R200,000-R1,200,000 per year by replacing Microsoft 365, Salesforce, Adobe, Slack and similar tools with self-hosted open source alternatives.

What open source alternatives exist for Microsoft 365 in South Africa?

LibreOffice, Nextcloud, and OnlyOffice are the leading open source alternatives. Imbertech handles the full migration, server setup, and staff training.

Is open source software POPIA compliant?

Yes. Self-hosted open source solutions often provide better POPIA compliance because data never leaves South African servers. Imbertech's open source migrations include POPIA configuration as standard.

What IT services does Imbertech offer?

Imbertech offers open source migration, cybersecurity, IT compliance, consulting, forensics, IoT, IT operations, development, and training for South African businesses.

Protect What You've Built

We Break In. So Nobody Else Can.

The average breach costs a South African business R53 million. 60% of SMEs that suffer a major breach close within six months. We attack your systems the way real hackers would and find the gaps before someone exploits them. The cheapest breach is the one that never happens.

What We Do

📊

Security Assessment

Full network scan, configuration testing, and policy review. You get a ranked vulnerability list with business impact ratings, specific fixes, and clear priorities.

🔓

Penetration Testing

We attack your systems the way real threat actors do. Network, web app, API, social engineering, wireless. We chain vulnerabilities, escalate privileges, and show you exactly how an attacker would move through your environment.

🚨

Incident Response

Ransomware, data breach, compromised credentials. We contain the damage first, then investigate. How they got in, what they accessed, what you need to report. Answers, not theories.

🎓

Security Awareness Training

93% of breaches start with a phishing email. We run realistic phishing simulations, teach your team to spot social engineering, and make it stick with ongoing practical sessions.

🛡️

Managed Security (SOC)

24/7 security monitoring without hiring a full team. Wazuh SIEM/XDR, detection rules, alert monitoring, and real-time response. A full SOC at a fraction of the cost of building one.

📋

Compliance Security

POPIA, ISO 27001, PCI-DSS, NIST. We implement the technical security controls auditors want to see working: firewall configs, access controls, encryption, logging, and vulnerability management.

What We Protect You Against

These aren't hypothetical threats. They're what we see in the wild, every week, targeting South African businesses.

Phishing & Social Engineering

One click costs an average of R1.4 million in recovery. We test if your team falls for it and train them not to.

Ransomware

Average SA ransom: R2.1 million, plus 21 days downtime. We test your defences and backup recovery before it happens for real.

Supply Chain Attacks

A single compromised vendor can expose every client they serve. Your security is only as strong as your weakest supplier.

Insider Threats

Insider incidents take 85 days on average to contain. We audit access controls and monitor for unusual internal behaviour.

Web Application Attacks

SQL injection, XSS, auth bypass, API abuse. POPIA fines up to R10 million for a data leak. We find the holes first.

Network Intrusion

Average time to detect a network breach in SA: 194 days. We simulate a full attack chain from initial access to domain compromise.

What We Find In Real Assessments

Sanitised examples from real engagements. Names and details changed, but the vulnerabilities are real and we find variants of these in almost every assessment.

Domain admin in 3 hoursCritical

Started with a phishing email to a junior employee. Harvested credentials via a cloned login page. Used those credentials to access an internal file share with plaintext service account passwords. One of those accounts had domain admin rights. Full control of the entire Active Directory in under 3 hours.

Database exposed to the internetCritical

MongoDB instance running on a cloud server with default credentials and no firewall. Contained 45,000 customer records including email addresses, phone numbers, and hashed passwords. Had been exposed for 8 months. Nobody knew.

Backup that doesn't workHigh

Client had a backup system running every night. Green lights on the dashboard. But nobody had tested a restore in 2 years. When we tested it, the backups were corrupted. If ransomware had hit, they would have lost everything while believing they were protected.

VPN with no MFAHigh

Remote access VPN accepting username and password only. No multi-factor authentication. Credential stuffing attack would have given an attacker full network access. 340 employees using it daily. Fixed in one afternoon.

The Arsenal

ScanningNmap, Nessus, OpenVAS, Nuclei, Nikto. Automated vulnerability scanning with manual validation.

PenetrationBurp Suite, Metasploit, SQLMap, Gobuster, Hydra. Manual exploitation and privilege escalation.

OSINTShodan, Censys, theHarvester, Maltego, certificate transparency logs. Mapping your attack surface from the outside.

MonitoringWazuh (SIEM/XDR), Suricata (IDS), YARA rules, Sigma rules. Real-time threat detection and response.

ForensicsAutopsy, Volatility, Wireshark, FTK Imager. Evidence collection and analysis for incident investigation.

ReportingCustom reports with CVSS scoring, business impact analysis, and step-by-step remediation guides. We don't hand you a scanner dump.

How We Test

Same structured process every engagement. Rules of engagement signed before we touch anything.

Scope

Define what gets tested. Sign rules of engagement. Agree on targets, timelines, and boundaries. No surprises on either side.

Discover

Map your attack surface. Automated scanning combined with manual reconnaissance. We find what the scanners miss because we think like attackers, not auditors.

Test

Controlled exploitation. Same techniques real threat actors use, under controlled conditions. We chain vulnerabilities, escalate privileges, and prove business impact. We prove business impact, not theoretical risk.

Report

Findings ranked by real business impact. Each finding includes: what we found, how we exploited it, what an attacker could do with it, and exactly how to fix it. Screenshots and evidence included.

Fix

We don't just hand over a report and walk away. Implementation support included. We help your team remediate, verify the fixes work, and retest to confirm. Findings get resolved.

The Cost of Doing Nothing

Security testing is an investment. Here's what it looks like next to the alternative.

Without Testing

✗R53M average breach cost in South Africa

✗R2.1M average ransomware payment

✗21 days average downtime per ransomware incident

✗194 days average time to detect a breach

✗Up to R10M in POPIA regulatory fines

✗60% of breached SMEs close within 6 months

With Regular Testing

✓Vulnerabilities found and fixed before exploitation

✓Compliance requirements met (POPIA, ISO 27001, PCI-DSS)

✓Insurance premiums reduced with documented security posture

✓Client confidence maintained with proof of due diligence

✓Incident response tested before you need it for real

✓A pentest costs a fraction of 1% of the average breach

South African businesses lost over R2.2 billion to cybercrime in 2023. A pentest costs less than a single incident response callout.

Security Doesn't Exist in Isolation

Security works best when it's built into everything.

💻

Secure Development

Secure code from the start costs 6x less than patching vulnerabilities in production.

Learn about Development →

🔓

Self-Hosted Monitoring

Wazuh, Suricata, Grafana. Security monitoring you own. No per-seat licensing.

Learn about Open Source →

🤖

AI Threat Detection

ML models that spot anomalies humans miss. Faster detection means smaller breaches.

Learn about AI & Automation →

How long would it take us to get into your network?

Free initial assessment. We'll look at your external attack surface and tell you what we can see from the outside. No obligations. Just the truth about your exposure.

Get Your Free Security Assessment