“You can only protect what you know”
RedHunt Labs’ Attack Surface Management solution allows organisation to continuously identify, categorise, monitor and assess their constantly changing digital asset landscape and be in control of their security posture.
“Organisations will be insecure as long as they use password for authentication”
PureID’s patented Multi-factor Passwordless Authentication (MFA) gives uniform and frictionless authentication experience across all the enterprise resources.
“Our products and services help organisations assess, quantify and eliminate security risks”
At The SecOps Group, we are passionate about providing innovative technology solutions that makes a significant difference in helping organisations strengthen their security posture.
Check outOur Services
Application and API Pentest
Application and API Pentest
We pride ourselves in going above and beyond the industry standards, such as OWAST top-10 and probe the application and APIs for latest emerging threats. From the classic input validation attacks to the latest HTTP de-sync attacks, we have got it all covered.
External Network Pentest
External Network Pentest
The SecOps Group, uses RedHunt Labs’ innovative technology to discover organisation’s publicly exposed digital assets and assess these for security risks. In today’s day and age, digital asset don’t apply to just IP addresses and host names, but includes several ither items such as code repositories, s-3 buckets, docker images, mobile apps and much more. With several talks and tools on OSINT and related topics, our technical team is highly regarded in this field.
Internal Network Pentest
Internal Network Pentest
Identify exploitable vulnerabilities in your internal network and verify that your infrastructure is resilient against the most advanced network level attacks. From the Kerberos authentication issues to exfiltrating data over DNS; pivoting, persistence and abusing trusts, we have got it all covered.
Mobile Application Pentest
Mobile Application Pentest
A deep-dive manual security assessment to identify weaknesses and ensure your mobile application security. Assessing the app to identify the security risks arising from data at rest (e.g. insecure storage) as well as in transit are key to provide a comprehensive assessment. We use both open source and commercial tools and where applicable a code-assisted pen test can also be performed to provide the best value to enterprises.
Source-Code analysis
Source-Code analysis
Analysing the source code and uncover the most complicated and deep routed business flaws. Our technical team is familiar with code reviews of all modern frameworks and rely on both commercial tools as well as manual assessment. Where applicable a code-assisted pen test can also be performed to provide the best value to enterprises.
DevSecOps
DevSecOps
DevSecOps extends DevOps by introducing security early into the SDLC process, thereby minimizing the security vulnerabilities and enhancing the software security posture. We help enterprises implement security within their DevOps pipeline and provide advise on which products and tools can benefit them the most. Where applicable we also help organisations help them reduce cost by integrating equivalent open source tools and training the staff to eliminate false positives.
Cloud Security Assessment
Cloud Security Assessment
Assess how your cloud infrastructure will stand against a dedicated adversary, be it an external attacker or an insider threat. Security threats arise due to insecure storage (s3 buckets, azure blobs etc), mis-configurations, lack of hardening and by not following defense-in-depth principles.
Look atOur Products
PureAUTH
PureID's PureAUTH solution uses Proof-of-Association, a multi-factor Passwordless Authentication method invented by PureID. PureAUTH is designed to provide a highly secure and reliable authentication, without using passwords.
Proof-of-Association involves construction, verification & validation of an enterprise user’s Identity using multiple distributed factors. It is a secure and resilient authentication scheme
NVADR
RedHunt Labs' NVADR is an Attack Surface Management (ASM) solution that helps enterprises discover, track and secure their exposed Assets continuously. Our "asset" definition goes beyond subdomains and IP ranges and extends to items such as mobile apps, code repos, cloud storage instances, docker machines, leaked Keys, credentials, and much more. A unified solution to give enterprises a holistic view of their constantly changing asset inventory and the associated risk profile.
AboutThe SecOps Group
AboutThe SecOps Group
SecOPs Group is founded by industry veterans. We have over 15 years of experience in providing cyber security consultancy and have worked with some of the largest blue chip companies. Being an independent boutique company, we enable our customers to continuously identify and assess their security postures and provide advice in securing against the adversaries.
Our team regularly speaks at international conferences (including Black Hat, Defcon, HITB, OWASP Appsec). We pride ourselves in hiring the best talent that is out there and our passion is to stay up-to-date with the latest in the world of hacking.
Know moreAbout Sid
Sid is a serial infosec entrepreneur and an experienced professional in setting and scaling up businesses. A graduate from IIT Kanpur and with over 15 years of experience in IT security field, he is passionate about working with clever people and bringing cutting edge technology to life.
Sid has been a speaker, trainer and mentor at many internal conferences such as Black Hat, OWASP Appsec, HITB, Brucon etc. He has authored a number of articles, exploits, book(s) and white papers on various topics on application and database security. His previous business NotSoSecure, was acquired in 2018 by Claranet Group. He also runs an initiative to mentor budding entrepreneurs at https://disruptrs.io.
Know moreAbout Sid
Know moreSean Atkinson
Sean is an experienced infosec professional, with a huge passion for creating value propositions that make a difference to clients in a busy marketplace. A graduate from Lancaster University Management School and the BT Graduate Scheme, he has 12 years of experience in the IT Security field. He has commercially led some of the largest technology programmes across the UK Critical National Infrastructure including the Smart Meter roll-out, alongside other NCSC, Public Sector and Private Sector projects.
Sean is also a Public Speaker, who genuinely cares about supporting the cyber community with diversity, inclusivity and entry to market, mentoring a number of individuals including leading the NCSC Cyber First Initiative. Sean is an active member of many industry initiatives that bring knowledge sharing and networking, including being Co-Founder of BSides Cheltenham and the Cyber House Party which raises money for great causes.
Know moreSean Atkinson
