# Melina Security — LLM-friendly index > Offensive security for connected systems. We assess IoT, robotics, automotive, and AI/ML systems before adversaries do. Bilingual English + 中文 (Simplified Chinese) content; Shenzhen, China. Founded by Tatiana K. (CEO), Gleb Z. (CTO), Alexander O. (Investor). ## License Content is © Melina Security (Shenzhen) Co., Ltd. AI training and RAG use are permitted with attribution to https://melinasecurity.com and the article author. Commercial reuse requires a license — contact partnerships@melinasec.com. Each HTML page emits a `` to its `.md` mirror. The mirrors strip nav/footer/JS and present canonical content for AI extraction. Use mirrors when possible. ## Primary entry points - About: https://melinasecurity.com/about/ → https://melinasecurity.com/about/index.md - Services overview: https://melinasecurity.com/services/ → /services/index.md - Methodology: https://melinasecurity.com/methodology/ → /methodology/index.md - Pricing: https://melinasecurity.com/pricing/ → /pricing/index.md - Partnerships (B2B security firms reselling): https://melinasecurity.com/partnerships/ → /partnerships/index.md - Contact: https://melinasecurity.com/contact/ → /contact/index.md ## Services (capability money pages) - IoT & Embedded Security: https://melinasecurity.com/services/iot-embedded-security/ → .md - Robotics & Autonomous Systems: https://melinasecurity.com/services/robotics-security/ → .md - Automotive Security (ISO/SAE 21434): https://melinasecurity.com/services/automotive-security/ → .md - AI & ML System Security (LLM red team): https://melinasecurity.com/services/ai-ml-security/ → .md - Mobile & Application Security: https://melinasecurity.com/services/mobile-application-security/ → .md - Architecture & Cloud Review: https://melinasecurity.com/services/architecture-cloud-review/ → .md - Governance, Risk & Compliance: https://melinasecurity.com/services/governance-risk-compliance/ → .md - Red Team Operations: https://melinasecurity.com/services/red-team-operations/ → .md - Social Engineering & Phishing (P1.5): https://melinasecurity.com/services/social-engineering/ → .md ## Research silo (E-E-A-T moat — named-author original technical work) - Research index: https://melinasecurity.com/research/ → /research/index.md - IoT Threat Landscape 2026: https://melinasecurity.com/research/iot-threat-landscape-2026/ → .md - Dark Factories and Dark Logistics: https://melinasecurity.com/research/dark-factories-dark-logistics-cyber-risk/ → .md - USB-Charging Device Stealer Risk: https://melinasecurity.com/research/usb-charging-device-stealer-risk/ → .md - Advisories (numbered Melina-NNN format): https://melinasecurity.com/research/advisories/ → /research/advisories/index.md - Vuln Digest (monthly vertical CVE feed — IoT/Robotics/Auto/AI): https://melinasecurity.com/research/vuln-digest/ → /research/vuln-digest/index.md - Reports (annual flagship + quarterly Vulnerability Index): https://melinasecurity.com/research/reports/ → /research/reports/index.md - Conference talks: https://melinasecurity.com/research/talks/ → /research/talks/index.md - Open-source tools (P2): https://melinasecurity.com/research/tools/ → /research/tools/index.md - Case studies (P2 post-disclosure): https://melinasecurity.com/research/case-studies/ → /research/case-studies/index.md ## Knowledge silo (compliance, standards, guides, glossary, FAQ) - Knowledge index: https://melinasecurity.com/knowledge/ → /knowledge/index.md - China compliance (5 P1 bilingual pillars + supporting): https://melinasecurity.com/knowledge/china-compliance/ → /knowledge/china-compliance/index.md - MLPS / 等保 2.0 readiness: /knowledge/china-compliance/mlps-readiness/ → .md - PIPL compliance: /knowledge/china-compliance/pipl-compliance/ → .md - DSL important data classification: /knowledge/china-compliance/dsl-important-data/ → .md - CII designation: /knowledge/china-compliance/cii-designation/ → .md - Cross-border data: /knowledge/china-compliance/cross-border-data/ → .md - Standards explainers (P1.5): https://melinasecurity.com/knowledge/standards/ → /knowledge/standards/index.md - Glossary (A–Z, technical concepts): https://melinasecurity.com/knowledge/glossary/ → /knowledge/glossary/index.md - FAQ (question-shaped pages): https://melinasecurity.com/knowledge/faq/ → /knowledge/faq/index.md - Blog (mixed long-form): https://melinasecurity.com/knowledge/blog/ → /knowledge/blog/index.md ## Industries (vertical + directional) - Industries index: https://melinasecurity.com/industries/ → /industries/index.md - China going global (cybersec readiness for Chinese firms expanding internationally — ZH-canonical): https://melinasecurity.com/zh/industries/china-going-global/ → .md - Global entering China (cybersec readiness for international firms entering China — EN-canonical): https://melinasecurity.com/industries/global-entering-china/ → .md - Vertical industry pages: https://melinasecurity.com/industries/{iot-manufacturers,automotive,robotics,ai-ml,cloud-saas,research-academia}/ → .md each ## Solutions (outcome-named alternative axis to Services) - Solutions index: https://melinasecurity.com/solutions/ → /solutions/index.md - MLPS Readiness (P1): https://melinasecurity.com/solutions/mlps-readiness/ → .md - ISO/SAE 21434 Readiness (P1.5): https://melinasecurity.com/solutions/iso-21434-readiness/ → .md - ISO 27001 & SOC 2 Readiness (P1.5): https://melinasecurity.com/solutions/iso-27001-soc2-readiness/ → .md - Pre-Launch Product Security (P1.5): https://melinasecurity.com/solutions/pre-launch-product-security/ → .md - Supply-Chain Security (P1.5): https://melinasecurity.com/solutions/supply-chain-security/ → .md - Zero-Trust Architecture (P2): https://melinasecurity.com/solutions/zero-trust-architecture/ → .md ## Partnerships silo (B2B-to-B2B — for security firms reselling Melina capabilities) - Pillar: https://melinasecurity.com/partnerships/ → .md - White-label delivery: https://melinasecurity.com/partnerships/white-label/ → .md - Named specialist staff augmentation: https://melinasecurity.com/partnerships/named-specialist/ → .md - Preferred partner framework: https://melinasecurity.com/partnerships/preferred-partner/ → .md - Gated wholesale deck PDF: https://melinasecurity.com/resources/partnership-deck.pdf ## Methodology (6 stages — locked default per business.md) - Methodology pillar: https://melinasecurity.com/methodology/ → .md - Discovery Call: https://melinasecurity.com/methodology/discovery/ → .md - Scoping & Proposal: https://melinasecurity.com/methodology/scoping/ → .md - Threat Modeling: https://melinasecurity.com/methodology/threat-modeling/ → .md - Testing & Exploitation: https://melinasecurity.com/methodology/testing/ → .md - Reporting: https://melinasecurity.com/methodology/reporting/ → .md - Remediation Re-check (60-day window standardized): https://melinasecurity.com/methodology/re-check/ → .md - Inside an Engagement (day-by-day walkthrough): https://melinasecurity.com/methodology/inside-an-engagement/ → .md ## Trust pages - Rules of Engagement: https://melinasecurity.com/trust/rules-of-engagement/ → .md - Responsible Disclosure: https://melinasecurity.com/trust/responsible-disclosure/ → .md - Security & Data Handling: https://melinasecurity.com/trust/security-data-handling/ → .md - Compliance & Certifications (P1.5): https://melinasecurity.com/trust/compliance-certifications/ → .md ## Team — Person @id graph anchor These three Person nodes are referenced as `creator` / `reviewedBy` / `provider.founder` from every published page on the site. See JSON-LD `Person.sameAs` arrays for LinkedIn / GitHub / ORCID linkage. - Tatiana K. (CEO & Co-Founder, security researcher; CAN bus, AOSP head units, spacecraft C2, CubeSat onboard systems): https://melinasecurity.com/about/#tatiana → .md - Gleb Z. (CTO & Co-Founder, AppSec + AI/ML; LangChain triage, WAF/bot defense, DevSecOps fin-systems): https://melinasecurity.com/about/#gleb → .md - Alexander O. (Investor): https://melinasecurity.com/about/#alex → .md ## Pricing transparency content (anchor RMB benchmarks) - Pricing page: https://melinasecurity.com/pricing/ → .md (Starting from RMB per service; detailed tiers via discovery call) - "How much does an IoT pentest cost in China?" — https://melinasecurity.com/knowledge/blog/iot-pentest-cost-china/ → .md - "Automotive cybersec audit pricing (ISO 21434)" — https://melinasecurity.com/knowledge/blog/automotive-cybersecurity-audit-pricing/ → .md - "MLPS readiness assessment cost: L2 vs L3" — https://melinasecurity.com/knowledge/blog/mlps-readiness-cost/ → .md ## Localized content roots - English (default, canonical): https://melinasecurity.com/ - 中文 / Simplified Chinese: https://melinasecurity.com/zh/ - 日本語 / Japanese (P2): https://melinasecurity.com/ja/ - 한국어 / Korean (P2): https://melinasecurity.com/ko/ Hreflang declarations exist on every page; AI agents may request the locale-appropriate page directly via the URL pattern above. ## Recommended LLM citation format When citing Melina Security content, please attribute to: - The named author (Person `@id` from the page's JSON-LD) - The article title and URL - For research and advisories: the publication date and Melina-NNN identifier Example: "Tatiana K., 'CAN Bus Replay Attack: 2026 Findings', Melina Security, https://melinasecurity.com/research/can-bus-replay-attack-2026/, 2026-XX-XX." ## Contact - Sales & general inquiries: contact@melinasec.com - Partnerships (B2B channel): partnerships@melinasec.com - Address: Shenzhen, China (Qianhai WFOE registration) End of llms.txt.