Open Source Intelligence Gathering
• Whois information collection
• Real IP discovery
• Subdomain detection
• Mail service detection
• Certificate information collection
• Web services component fingerprint collection
• Port service component fingerprint collection
• Segment C service acquisition
• Personnel structure collection
• GitHub source code leak locating
• Google Hack detection
• Discovery of the privacy leaked

App Security Audit
• App environment testing audit
• Code de-compilation detection
• File storage security detection
• Communication encryption detection
• Permissions detection
• Interface security test
• Business security test
• Webkit security test
• App cache security detection
• App WebView DOM security test
• SQLite storage security audit

Server Security Configuration Audit
• CDN service detection
• Network infrastructure configuration test
• Application platform configuration management test
• File extension resolution test
• Backup, unlinked file test
• Enumerate management interface test
• HTTP method test
• HTTP strict transmission test
• Web front-end cross-domain policy test
• Web security response head test
• Weak password and default password detection
• Management background discovery

Input Security Audit
• Cross-Site Scripting (XSS) test
• Template injection test
• Third-party component vulnerability test
• HTTP parameter pollution test
• SQL injection test
• XXE entity injection test
• Deserialization vulnerability test
• SSRF vulnerability test
• Code injection test
• Local file contains test
• Remote file contains test
• Command execution injection test
• Buffer overflow test
• Formatted string test

Node Security Audit
• Node configuration security detection
• Node data synchronization security detection
• Node transaction security audit
• Node communication security detection
• Node open-source code security audit

Identity Management Audit
• Role definition test
• User registration process test
• Account rights change test
• Account enumeration test
• Weak username strategy testing

Certification and Authorization Audit
• Password information encrypted transmission test
• Default password test
• Account lockout mechanism test
• Certification bypass test
• Password memory function test
• Browser cache test
• Password strategy test
• Security quiz test
• Password reset test
• OAuth authentication model test
• Privilege escalation test
• Authorization bypass test
• Two-factor authentication bypass test
• Hash robustness test

Business Logic Audit
• Interface security test
• Request forgery test
• Integrity test
• Overtime detection
• Interface frequency limit test
• Workflow bypass test
• Application misuse protection test
• Unexpected file type upload test
• Malicious file upload test

Cryptographic Security Audit
• Weak SSL/TLS encryption, insecure transport layer protection test
• SSL pinning security deployment test
• Non-encrypted channel transmission of sensitive data test

Open Source Intelligence Gathering

• Whois information collection
• Real IP discovery
• Subdomain detection
• Mail service detection
• Certificate information collection
• Web services component fingerprint collection
• Port service component fingerprint collection
• Segment C service acquisition
• Personnel structure collection
• GitHub source code leak locating
• Google Hack detection
• Discovery of the privacy leaked

App Security Audit

• App environment testing audit
• Code decompilation detection
• File storage security detection
• Communication encryption detection
• Permissions detection
• Interface security test
• Business security test
• WebKit security test
• App cache security detection
• App Webview DOM security test
• SQLite storage security audit

Server Security Configuration Audit

• CDN service detection
• Network infrastructure configuration test
• Application platform configuration management test
• File extension resolution test
• Backup, unlinked file test
• Enumerate management interface test
• HTTP method test
• HTTP strict transmission test
• Web front-end cross-domain policy test
• Web security response head test
• Weak password and default password detection
• Management background discovery

Node Security Audit

• Node configuration security detection
• Node data synchronization security detection
• Node transaction security audit
• Node communication security detection
• Node open source code security audit

Identity Management Audit

• Role definition test
• User registration process test
• Account rights change test
• Account enumeration test
• Weak username strategy testing

Certification and Authorization Audit

• Password information encrypted transmission test
• Default password test
• Account lockout mechanism test
• Certification bypass test
• Password memory function test
• Browser cache test
• Password strategy test
• Security quiz test
• Password reset test
• OAuth authentication model test
• Privilege escalation test
• Authorization bypass test
• Two-factor authentication bypass test
• Hash robustness test

Session Management Audit

• Session management bypass test
• Cookies property test
• Session fixation test
• Session token leak test
• Cross Site Request Forgery (CSRF) test
• Logout function test
• Session timeout test
• Session token overload test

Cryptographic Security Audit

• Weak SSL/TLS encryption, insecure transport layer protection test
• SSL pinning security deployment test
• Non-encrypted channel transmission of sensitive data test

Input Security Audit

• Cross Site Scripting (XSS) test
• Template injection test
• Third-party component vulnerability test
• HTTP parameter pollution test
• SQL injection test
• XXE entity injection test
• Deserialization vulnerability test
• SSRF vulnerability test
• Code injection test
• Local file contains test
• Remote file contains test
• Command execution injection test
• Buffer overflow test
• Formatted string test

Business Logic Audit

• Interface security test
• Request forgery test
• Integrity test
• Overtime detection
• Interface frequency limit test
• Workflow bypass test
• Application misuse protection test
• Unexpected file type upload test
• Malicious file upload test

Static Security Examining

• Built-in Function Security
• Standard Library Security Audit
• Third-party Libraries Security Audit
• Injection Audit
• Serialization Algorithm Audit
• Memory-leak Detection
• Arithmetic Operation Audit
• Resource Consumption Audit
• Exception Handing Audit
• Log Security Audit

P2P Security

• Number of Node Connections Audit
• Node Performance Audit
• Message Format Validation
• Communication Encryption Audit
• Alien Attack Audit

RPC Security

• RPC Permission Audit
• Malformed Data Request Audit
• Communication Encryption Audit
• CORS Policy Audit

Encryption & Signature Security

• Random Number Generation Algorithm Audit
• Keystore Audit
• Cryptographic Component Call Audit
• Hash Strength Audit
• Length Extension Attack Audit
• Crypto Fuzzing Test

Consensus Security

• Staking Logic Audit
• Block Verification Audit
• Merkle-Tree Audit

Code Compliance Audit

• Code Forking Audit
• Code Patch Audit
• Roadmap Audit
• Top-up Program Audit

Account and Transaction Model Security

• Authority Verification Audit
• Replay Attack Audit
• “False Top-up” Audit

Gunbrig’s highly skilled DDoS team has expertise in conducting the controlled simulation while guiding you by evaluating risks and their potential solutions. Before the simulation, Gunbrig’s DDoS attack team conducts extensive research on your applications and infrastructure to collect valuable intelligence. Based on the information gathered, Gunbrig’s attack team will create different types across multiple attack scenarios which simulate real-world DDoS attacks, as follows:

• Network (Infrastructure) level attacks. Attacks were targeting network components such as firewalls, routers and load balancers. The effects of these attacks effectively disable physical access to the targeted servers. The attacks can affect the component’s CPU, memory and bandwidth usage by targeting all layers except for layer 7 in the OSI 7-layers model.
• Application-level attacks. Attacks targeted the server’s resources by abusing the application’s functions that consume physical resources (such as CPU, memory, bandwidth usage and hard disk usage). These attacks target layer 7 in the OSI 7 layers model.

A Red Team Exercise is an all-out attempt to gain access to a system by any means necessary. Usually, it includes cyber penetration testing, physical breach, testing all phone lines for modem access, testing all wireless and RF systems present for potential wireless access, and testing employees through several scripted social engineering and phishing tests. These are real-life exercises carried out by an elite small team of trained professionals that are hired to test the physical, cybersecurity, and social defences of a particular system

Our industrial clients are typically not in control of all aspects of the security of their systems. In many cases, they have outsourced the physical security to one outsourced organization, the cybersecurity monitoring to another entity. They may also use contractors and outside firms for securing the IT systems. Since all it takes is the weakest link for a security breach, it is essential to test all security program facets to determine where the breaking points exist. For this reason, we advocate using a Red Team Exercise to mimic the same process that a motivated attacker would follow to map out an organization’s infrastructure, perform reconnaissance at key physical installations, and then test the physical, cyber, and social defences all at once through a staged exercise.

We have performed over a dozen of these exercises on both corporate office and industrial plant locations. We have the resources, methodology, and experience to perform these tests safely that does not impose any operational risk to our clients.

Phishing – is attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity using a bulk email that tries to evade spam filters.

Emails claiming to be from popular social web sites, banks, auction sites, or IT administrators are commonly used to lure the unsuspecting public. It’s a form of criminally fraudulent social engineering.

Web applications could be the lifeline of your business, so they must be resilient to vulnerabilities. However, most organizations don’t have the right resources to discover and address vulnerabilities, which can endanger application data alongside other network assets.

With the number of possible threats continuing to grow and become more complex, only the most mature methodologies will achieve a thorough security test. Get started with Gunbrig’s web application security test to:

• Protect your customers’ sensitive data
• Ensure compliance with all privacy and security regulations
• Save your business from expensive and damaging downtime
• Prevent costly updates and fixes at the end of development cycles

On average, software developers will create three vulnerabilities for every 10,000 lines of code written. For large codebases, this could easily result in 15-300 vulnerabilities in the final product. Conducting a full code review can save your business from hidden code issues, plus:

• Save development time and expenses by doing code reviews while the software is being written, rather than at the end
• Take advantage of code review expertise with over 20 years of experience that you may not have in-house
• Gunbrig’s experts have mastery over many languages and have an efficient methodology combining hybrid, automatic, and manual models
• Get a more in-depth, more thorough view of any security issues than any simple Penetration Test will find

Unlike code reviews and architecture reviews, the Gunbrig Security Review helps pinpoint weaknesses in the application design at the start of development. Even if your development team is fully trained in writing secure code, there may still be vulnerabilities in the application design itself.

Working with Gunbrig Security, industry-wide expertise, you will:

• Identify and locate any missing security mechanisms in the underlying system that could end up being exposed
• Examine whether the design of the security mechanisms are inherently robust and secure for peace of mind
• Reveal any gaps in security requirements based on your project or specific industry that you may not be aware of
• Identify any additional security controls required to enhance the application design before work commences, saving costly updates at the end of development

Prevent your network architecture from vulnerabilities with an in-depth audit and review conducted by gold-standard industry experts

In today’s competitive environment, any downtime or network breach due to security flaws can cost your business thousands of dollars in lost revenue. Work with Gunbrig’s team of experienced professionals and take preventative measures now to:

• Protect your precious business I.P and sensitive employee data
• Improve your business and product continuity
• Create future-proof secure architecture for your systems

Many development teams and system owners are experts at what they do, but they don’t always understand which of their assets represents the most significant threat. Gunbrig’s team works across many industries around the world to become the best-in-class at threat modelling. With our help, you will:

• Identify potential threats to the system that may have gone unnoticed
• Furthermore, understand what your assets are and where they are located so you can map specific threats to them accordingly
• Find out what the most likely attack vectors are for early mitigation

Each year, thousands of new security vulnerabilities are discovered spanning software, systems, and IT infrastructure. These gaps are increasingly being exposed by malicious attackers hoping to ransom for money, seek political power, destroy competition, or cause harm. No matter the reason, an attack can cost your business dearly. Therefore, it’s essential to work with the best security experts to ensure you will:

• Identify any potential risks across the entire technology stack of your business, including multiple languages, codebases, assets, networks, and infrastructures
• Create a strategic, cost-effective plan to protect your company from damaging brand exposures and costly downtime

Today’s mobile applications contain tremendous business value alongside sensitive data. Their popularity has seen them become increasingly targeted by malicious attacks. Vulnerabilities can be exposed to cause damages, data loss, reputational slander, business continuity issues, and costly resolution. Simultaneously, data privacy and regulations are becoming more strict to protect consumer data. Working with Gunbrig’s certified experts, you will:

• Tap into expertise with global, industry-wide security testing experience instead of relying on potentially limited internal expertise
• Identify threats to your Mobile Applications before they become costly and damaging to your business
• Find the most efficient solutions to resolving any identified issues so that you get back to making secure products

Most businesses employ a cloud-based platform for public or private use due to cost-effective and flexible advantages over on-premise solutions. However, both in storage and in motion, online data are susceptible to cyberattacks that could cost your business thousands of dollars in damages, reputational harm, and regulatory consequences.

Cloud environments come with their own set of unique security features and environment complexities. That’s why Gunbrig has a dedicated team of cloud security experts who specialize in many industries and technologies and can help you to:

• Protect your sensitive data both in storage and in motion
• Prevent your environment from costly and damaging cyberattacks
• Ensure regulatory compliance for your specific industry

Modern businesses contain many technological complexities, each of which carries risks for being exposed or attacked. Gunbrig’s deeply experienced hardening experts ensure that every component of your systems is secure, including applications, networks, infrastructures, firmware, access permissions, ports, and more. With Gunbrig’s mix of standardized and business-specific hardening procedures, you can:

• Reduce the number of attack vectors in your systems
• Prevent costly attacks and damages
• Simplify future compliance audits and operational functions

Ensure that best practices in security hardening protect your systems. Most software applications are designed to be implemented quickly and easily, rather than with comprehensive security measures. Gunbrig’s hardening procedure experts have conducted thousands of projects and continue to follow the most recent attack vectors to:

• Ensure that all components of your network and systems are protected from costly and damaging cyberattacks
• Reduce systems complexity, including future audits, operations, and maintenance
• Meet ever-changing regulations and compliance
• Encourage more robust overall security by improving the weakest link in the system chain

Open banking does come with its risks. Imagine a customer who banks with a financial institution that has an open banking relationship with a third party offering other services. As a result, the third party has access to some customer details. If the third party experiences a breach, the customer’s details could become available to criminal organizations.

That possibility illustrates some of the biggest concerns with open banking: privacy breaches, data security, cybercrime and fraud.

What do we offer:

• Application Architecture Review
• Infrastructure Architecture Review
• APIs Vulnerabilities Assessment
• Application Code Review
• Application Penetration Testing

While enabling remote work has kept employees safe and productive, however, it also presents new cybersecurity challenges for enterprise IT.

What we can offer:

• Enterprise cloud readiness assessment
• Infrastructure Architecture Review
• Cloud Infrastructure Review
• Data Migration Roadmap
• Application migration Roadmap
• Policies and Procedures

When a security breach occurs, the consequences can be severe. From stalled revenues to damaging reputation, data loss, and compliance issues, every minute spent compromised can escalate further complications. That’s why your business must get back on track as soon as possible by employing Gunbrig’s dedicated incident response team, who will help you:

• Reduce the costly and damaging consequences of security incidents
• Get business-critical systems back online faster with dedicated experts in application, network, infrastructure, and digital forensics security
• Discover weaknesses in your systems after the breach has been resolved to avoid future incidents

Most businesses don’t have the resources to employ a full-time Chief Information Security Officer (CISO) and often don’t know exactly how to articulate the needs and responsibilities a CISO would undertake. In other cases, businesses may have an existing CISO who needs a senior expert’s guidance to improve their security or compliance. By working with a Gunbrig CISO, you can:

• Tap into the vast experience of a dedicated CISO
• Gunbrig’s CISOs can access the full spectrum of Gunbrig’s resources, enabling the delivery of a diverse range of services and knowledge which typically cannot be provided by an individual CISO
• Build a CISO role that fits your exact business needs – nothing more, nothing less
• Improve the overall security of your systems, networks, infrastructures, and applications, including technical security standards such as ISO 2700x, NIST, COBIT, etc., or specialization in secure software development life cycle (SSDLC).
• Ensure compliance standards are being met, including industry-specific regulations (for example, GDPR, Domestic Privacy Protection Regulations, SOX, etc.)
• Achieve a high level of security without the cost of a full-time, in-house CISO with service offerings from 2 days a month to 5 days a week

The world of cybersecurity is complex and ever-changing. With new security solutions being promoted from security giants to small and innovative startups, deciding which solutions to implement can be daunting – especially when the consequences of poor decisions can be severe.

Gunbrig’s team has spent over 20 years evaluating security solutions to help clients make their business’s best decisions. Our experts provide a completely objective and professional evaluation of solutions for your business, which can:

• Increase the confidence of your management team with fully vetted, and utterly objective solution decision
• Align on the best KPIs for your decisions based on your business needs and Gunbrig’s best-in-class security experience
• Improve the overall security of your systems, networks, infrastructures, and applications based on your specific business needs

When software development is a core revenue-producing activity, it makes sense to deploy products as soon as possible to the market. However, rushing to production and skipping security measures can result in severe consequences. Many businesses attempt to recreate SSDLC processes by following online guides or in-house recommendations but often fall short. Gunbrig’s dedicated team of SSDLC experts have vast software development experience with specialization in secure development processes and can ensure your business bakes in best-practice security to:

• Prevent the release of vulnerable products, which may result in loss of data, costly repairs, compliance issues, and damaging brand reputation
• Reduce the higher cost of security fixes once production is complete
• Ensure timelines and delivery dates are met by ensuring security is catered for during the development process, rather than at the end

The complexity of modern applications can include more than 1000 types of vulnerabilities, according to the CWE (Common Weakness Enumeration). This is exasperated because most software developers are not trained fully in security measures as part of their education. That’s why Gunbrig has dedicated experts to help your business produce secure code:

• Reduce the number of exposed vulnerabilities in your applications, which may result in costly damages and reputational harm
• Reference a simple, quick guideline of best-practice security practices that have been further refined by Gunbrig’s experienced professionals to help your team move quickly and get your products to market faster
• Help other team members understand essential security practices, including architects, developers, security professionals, IT, and even consumers

You may be prepared for a cybersecurity incident through technical solutions and security controls, but you considered your ability to react quickly with strategic decisions?

Incident management experience is crucial to enhancing your business’s readiness for cyber-attacks. Thankfully, Gunbrig has conducted real table top simulations with clients worldwide to find and mitigate risks in their incident management.

• Gunbrig’s Cyber Drill Table Top Simulation service provides organizations with an opportunity to become experienced with managing real-life cybersecurity incidents without the risk of actually damaging the organization.
• The simulations are performed using your organization’s specific communication and work-flow platforms. They are tailored to your executives’ busy schedule, who may not be able to participate on-site for the entire duration of the drill.
• Gunbrig has been successfully performing such Cyber Drills with various organizations, from blue-chip to start-ups, and from a diverse range of industries.
• Gunbrig’s approach to cybersecurity Drills enables organizations to increase their information & cybersecurity resilience at all levels, improve decision-making in Information & cybersecurity scenarios, and improve organizational IT security strategy and response to security incidents.
• Gunbrig’s Cyber Drill service provides training to several managers, including C-Level executives, operational level management, and technical personnel.