NYX SEC is an offensive security and AI red-teaming consultancy in Tbilisi. We think like the adversary — probing your applications, infrastructure, and AI systems for the weaknesses real attackers will reach for first.
NYX SEC exists to bring real adversarial testing to the Georgian market — especially to the companies now building AI agents and LLM-powered products, where almost no local testing capability exists.
We don't run a scanner and hand you a PDF. We attack your systems by hand, the way a motivated adversary would, then show you exactly how we got in and how to close the door behind us.
Your LLM apps and AI agents, attacked the way a real adversary would — not benchmarked, broken.
Web, network, and infrastructure — tested by hand, end to end.
Know where you're exposed before anyone tests it for you.
The human layer is part of the attack surface. We harden it.
We define targets, boundaries, and rules of engagement in writing — so everyone knows what's in scope before we touch anything.
We map the attack surface, then attempt real exploitation by hand — the same path a motivated adversary would take.
Every finding lands with evidence, business impact, severity, and exact reproduction steps. No filler, no scanner dumps.
Once you've remediated, we come back and verify the fixes actually hold against the original attack.
Every system is different, so every quote is built around your actual targets. The models below are starting points — reach out and we'll scope the real thing.
A single, well-defined target tested in depth — one application, network, or AI system.
A time-boxed adversarial engagement against your LLM product or agent system.
Continuous testing that moves at the speed you ship — for teams releasing often.
Tell us what you're building and what you're worried about. We'll come back with a scope, a timeline, and a quote.