Terms of Website Use

These terms apply to use of this website. Engagement-level terms are set in the per-engagement statement of work and are not described here.

Authorisation

Every Binautopsy Labs engagement requires written authorisation from a party empowered to commission the work. We do not analyse artefacts you are not authorised to share. We do not perform unauthorised testing of any system.

Scope

Engagement scope is set in writing before any analysis begins. Findings outside the documented scope are not asserted.

Confidentiality

Engagements are confidential. Sample artefacts, source code, configuration, and findings are handled on a need-to-know basis under the engagement NDA.

What we do not promise

We do not promise guaranteed attribution, guaranteed recovery, or guaranteed compliance outcomes. Reporting separates observed evidence, technical inference, and speculation, with explicit confidence levels and explicit authorisation scope.

Limitations of liability

Findings are based on the artefacts, access, logs, and scope available during the engagement. We do not assert capabilities beyond the artefact and the documented scope. Engagement-level liability is set in the statement of work.

Defensive only

All analysis is defensive, investigative, product-security, compliance-support, or resilience-oriented. We do not develop, operate, or assist offensive operations.