Check outOur Services

We offer the following professional Penetration Testing services
image

Application and API Pentest

Application and API Pentest

We pride ourselves in going above and beyond the industry standards, such as OWAST top-10 and probe the application and APIs for latest emerging threats. From the classic input validation attacks to the latest HTTP de-sync attacks, we have got it all covered.

image

External Network Pentest

External Network Pentest

The SecOps Group, uses RedHunt Labs’ innovative technology to discover organisation’s publicly exposed digital assets and assess these for security risks. In today’s day and age, digital asset don’t apply to just IP addresses and host names, but includes several ither items such as code repositories, s-3 buckets, docker images, mobile apps and much more. With several talks and tools on OSINT and related topics, our technical team is highly regarded in this field.

image

Internal Network Pentest

Internal Network Pentest

Identify exploitable vulnerabilities in your internal network and verify that your infrastructure is resilient against the most advanced network level attacks. From the Kerberos authentication issues to exfiltrating data over DNS; pivoting, persistence and abusing trusts, we have got it all covered.

image

Mobile Application Pentest

Mobile Application Pentest

A deep-dive manual security assessment to identify weaknesses and ensure your mobile application security. Assessing the app to identify the security risks arising from data at rest (e.g. insecure storage) as well as in transit are key to provide a comprehensive assessment. We use both open source and commercial tools and where applicable a code-assisted pen test can also be performed to provide the best value to enterprises.

image

Source-Code analysis

Source-Code analysis

Analysing the source code and uncover the most complicated and deep routed business flaws. Our technical team is familiar with code reviews of all modern frameworks and rely on both commercial tools as well as manual assessment. Where applicable a code-assisted pen test can also be performed to provide the best value to enterprises.

image

DevSecOps

DevSecOps

DevSecOps extends DevOps by introducing security early into the SDLC process, thereby minimizing the security vulnerabilities and enhancing the software security posture. We help enterprises implement security within their DevOps pipeline and provide advise on which products and tools can benefit them the most. Where applicable we also help organisations help them reduce cost by integrating equivalent open source tools and training the staff to eliminate false positives.

image

Cloud Security Assessment

Cloud Security Assessment

Assess how your cloud infrastructure will stand against a dedicated adversary, be it an external attacker or an insider threat. Security threats arise due to insecure storage (s3 buckets, azure blobs etc), mis-configurations, lack of hardening and by not following defense-in-depth principles.

Look atOur Products

PureAUTH

PureID's Pure​AUTH​ solution uses Proof-of-Association, a multi-factor Passwordless Authentication method invented by PureID. PureAUTH is designed to provide a highly secure and reliable authentication, without using passwords.
Proof-of-Association involves construction, verification & validation of an enterprise user’s Identity using multiple distributed factors. It is a secure and resilient authentication scheme

NVADR

RedHunt Labs' NVADR is an Attack Surface Management (ASM) solution that helps enterprises discover, track and secure their exposed Assets continuously. Our "asset" definition goes beyond subdomains and IP ranges and extends to items such as mobile apps, code repos, cloud storage instances, docker machines, leaked Keys, credentials, and much more. A unified solution to give enterprises a holistic view of their constantly changing asset inventory and the associated risk profile.

AboutThe SecOps Group

image

AboutThe SecOps Group

SecOPs Group is founded by industry veterans. We have over 15 years of experience in providing cyber security consultancy and have worked with some of the largest blue chip companies. Being an independent boutique company, we enable our customers to continuously identify and assess their security postures and provide advice in securing against the adversaries.

Our team regularly speaks at international conferences (including Black Hat, Defcon, HITB, OWASP Appsec). We pride ourselves in hiring the best talent that is out there and our passion is to stay up-to-date with the latest in the world of hacking.

Know moreAbout Sid

Sid is a serial infosec entrepreneur and an experienced professional in setting and scaling up businesses. A graduate from IIT Kanpur and with over 15 years of experience in IT security field, he is passionate about working with clever people and bringing cutting edge technology to life.

Sid has been a speaker, trainer and mentor at many internal conferences such as Black Hat, OWASP Appsec, HITB, Brucon etc. He has authored a number of articles, exploits, book(s) and white papers on various topics on application and database security. His previous business NotSoSecure, was acquired in 2018 by Claranet Group. He also runs an initiative to mentor budding entrepreneurs at https://disruptrs.io.

Know moreAbout Sid

image

Know moreSean Atkinson

Sean is an experienced infosec professional, with a huge passion for creating value propositions that make a difference to clients in a busy marketplace. A graduate from Lancaster University Management School and the BT Graduate Scheme, he has 12 years of experience in the IT Security field. He has commercially led some of the largest technology programmes across the UK Critical National Infrastructure including the Smart Meter roll-out, alongside other NCSC, Public Sector and Private Sector projects.

Sean is also a Public Speaker, who genuinely cares about supporting the cyber community with diversity, inclusivity and entry to market, mentoring a number of individuals including leading the NCSC Cyber First Initiative. Sean is an active member of many industry initiatives that bring knowledge sharing and networking, including being Co-Founder of BSides Cheltenham and the Cyber House Party which raises money for great causes.

 

Know moreSean Atkinson

image

The SecOps GroupGet in touch

+441223926819