Let’s talk about
your code
Free sample — send one file, get one real finding in 24 hours.
Best for audit enquiries, free sample requests, and scope discussions. Replies within 2 hours.
ishrikantbhosale@gmail.comFree Sample
Send one source file or config. Real finding in 24 hours. Zero obligation.
Request Sample →Email with your scope
Describe what you need audited. Engagement letter + Razorpay link within 2 hours.
Pay 100% upfront
Payment via Razorpay. Engagement letter defines scope, timeline, confidentiality, and liability.
Share your code
Zip, private repo link, or SSH read access. Strictly confidential — never shared without consent.
Receive the PDF report
Executive Summary, findings with D_e scores, exploit chain analysis, remediation steps.
What languages do you audit?
C, C++, Python, Java, JavaScript, Solidity. Network devices: Cisco IOS-XE, Palo Alto PAN-OS, Fortinet FortiOS, Juniper JunOS.
Do you need login credentials or production access?
No. Read-only source code only — zip, private repo, or read-only SSH. Never production systems or user data.
What’s the Feynman Gate?
Before any finding enters the report I ask: What would disprove this? Am I overstating severity? Is it reproducible? Would I bet my reputation on it? Fail any — it doesn’t go in.
Can you white-label reports for our firm?
Yes. MSSPs and consultancies can use PotatoBullet as sub-contractor. Your branding, your client relationship. Email for volume pricing.
What if no vulnerabilities are found?
The report documents the methodology applied and confirms what was checked. In practice every codebase has at least some error debt findings.