Skip to main content



90% of reattacks, comments and incidents will have a median first response time of less than 16 office hours.


All of the following aspects are necessary conditions for the application of the service-level agreements:

  1. The group has a SQUAD plan,
  2. Both the environment and the source code are accessible,
  3. Remote access with no human intervention (no captcha, OTP, etc.),
  4. There are over 500 reattacks, comments or incidents.


Besides the general measurement aspects, this SLA is measured taking into account the following:

  1. Percentages are determined using percentiles,
  2. Office hours correspond to twelve-hour business days, like this: 7AM-7PM (GMT-5),
  3. The reattacks to be considered will be those that had its vulnerability closed.