Skip to main content

Project Audit: What is it and why is it needed?

Before taking your project on support or starting improvements, we conduct a Technical Audit. It's like diagnosing a car before a long trip: we need to know what's under the hood to guarantee the car won't break down on the way.

What is an audit?​

We access your servers and code in "Read-only" mode. We don't change, break, or restart anything. We analyze the current state of affairs across 50+ parameters.

Why do you need this?

  1. Security: We'll find "open doors" through which you could be hacked.
  2. Savings: Often we find forgotten servers or inflated tariffs you're overpaying for.
  3. Speed: We'll understand why the site is slow and how to fix it.
  4. Transparency: You'll receive a report in plain language: what's good, what's bad, and how much it costs to fix.

πŸ”’ Security and NDA​

We understand that transferring access requires trust.

  • NDA (Non-Disclosure Agreement): We sign an NDA before starting work. Your data, code, and customer databases are legally protected.
  • European law: We work in EU jurisdiction (Poland) and strictly comply with GDPR.
  • Cleanliness: After the audit (if we don't continue work), we delete all accesses on our side.

πŸ“ Checklist: What needs to be provided​

For a full audit, we'll need the following accesses. If something is missing β€” no problem, just let us know.

1. Server Access (VPS/Dedicated)​

This is the most important. We need admin access to check system settings.

  • Server IP address: (for example, 123.45.67.89)
  • User: (usually root or ubuntu)
  • SSH key or Password:
  • Port: (if different from standard 22)

2. Code Access (Repository)​

If you have Git set up, provide access to the repository.

  • Platform: GitHub / GitLab / Bitbucket.
  • Our account for invitation: 1it-audit (or your email).
  • If no Git: FTP/SFTP access (Host, Login, Password).

3. Hosting Provider and Domain​

Needed to check network settings, Firewall, and DNS.

  • Server control panel: (Hetzner Console, DigitalOcean, AWS).
  • Domain/DNS management: (Cloudflare, GoDaddy, Namecheap).

4. Additional Services (if any)​

  • Site admin panel (WordPress, Admin Panel).
  • Database (if it's on a separate host).

πŸš€ How to safely transfer passwords?​

STOP! Don't send passwords in chat!

Never send passwords in plain text in Telegram, WhatsApp, or Email. This is unsafe.

Please use one of these methods:

This is the simplest and fastest way.

  1. Go to 1ty.me or Privnote.
  2. Paste all accesses in the input field.
  3. Click "Create Link".
  4. Send us the link.
  5. How it works: As soon as we open the link, the note self-destructs. No one else can read it.

Method 2. Password Managers​

If you use 1Password, Bitwarden, or LastPass:

  1. Create a "Secure Note" or "Item".
  2. Use the "Share" function.
  3. Send us the access link.

πŸ“Š What will you receive in the end?​

Within 1-3 business days, we'll provide you with a PDF report, divided into 3 zones:

  1. πŸ”΄ Critical (Red): Problems that need immediate solution (risk of hacking or data loss).
  2. 🟑 Important (Yellow): Recommendations for improving speed and stability.
  3. 🟒 Excellent (Green): What's done well.

We'll also prepare a Roadmap (Work Plan) with estimated timelines and costs for fixing found problems.