Your code tells us
everything.
We think like your developers. We test like attackers. CyberLabs is a Dakar-based cybersecurity consultancy that finds the vulnerabilities scanners miss.
What we do
Security assessments that find how attackers would actually get in. Before they do.
Security Testing
Application Security Auditing
We test your web applications the way a real attacker would, methodically and manually. You get a prioritized report with clear steps to fix what matters most.
Email & Phishing Defense
Email is the most common way attackers reach your business. We assess your full email setup for impersonation risks and fraud exposure, and deliver a clear action plan to protect your domain and your people.
Mobile Application Security
Mobile money, banking apps, and payment platforms handle your most sensitive transactions. We test your mobile applications and their backends for the vulnerabilities that put those transactions at risk.
Prevention & Advisory
Infrastructure Security Review
We review your infrastructure for misconfigurations, excessive access, and exposed data, whether you run in the cloud, on your own servers, or a mix of both. You get a clear report of what is open that should not be and exactly how to lock it down.
Threat Modeling & Architecture Review
We map your systems from an attacker's perspective: what are the valuable targets, what are the realistic paths to reach them, and what would the business impact be. This gives your team a clear picture of where to invest in security.
Security Awareness Training
Practical training for your teams on recognizing threats, protecting sensitive data, and responding to incidents. Delivered in French, English, and Wolof, adapted to your industry and your people's actual workflows.
How we work
An engineer's approach to security. We find vulnerabilities by understanding how your systems are built.
Understand
We study your systems, your architecture, and your business context. We map the terrain before testing anything.
Test
We test the way real attackers do. Manually, methodically, and with an engineer's understanding of how software works under the surface.
Prove
Every finding comes with a full proof of concept. We show you exactly what is possible, not just what might be.
Prioritize
We connect individual findings into realistic attack scenarios and rank them by actual business impact. You know what to fix first.
Report
Detailed reports delivered in French and English. Clear severity ratings, step-by-step remediation, and executive summaries your leadership can act on.
Support
We work with your developers to implement fixes. Practical guidance from engineers who build the same kinds of systems we test.
Ready to find out what attackers see? Tell us about your system.
Start a conversationTrusted by organizations across Senegal
Free tools
Check your security posture in seconds. No account needed.
Email Security Check
Find out if someone can send fake emails from your domain. We check your SPF, DMARC, and DKIM records and give you a score out of 10 with actionable fixes.
Website Security Check
Scan your website for HTTPS issues, missing security headers, and common vulnerabilities. Get an instant security score with clear steps to harden your site.
Who we are
CyberLabs SUARL is a cybersecurity consultancy based in Dakar, Senegal. We perform security research, audits, threat modeling, phishing assessments, and security training. All from a software engineering perspective, not a network/infrastructure one.
With 10+ years across secure development, anti-phishing systems, and enterprise security at scale, we bring a unique blend of builder's intuition and attacker's mindset. We've built phishing detection algorithms for APWG and Google Safe Browsing, led email security at dmarcian, and currently conduct security research for Microsoft Defender.
Our focus is the application layer: APIs, authentication, authorization, data exposure, email security, and the architecture decisions that create or prevent vulnerabilities.
Let's talk
Describe your system. We'll take it from there.