Our best in class red team can deliver a holistic cyber attack simulation to provide a true evaluation of your organisation’s cyber resilience.
Leverage the team behind the industry-leading Web Application and Mobile Hacker’s Handbook series.
MDSec’s penetration testing team is trusted by companies from the world’s leading technology firms to global financial institutions.
Our certified team work with customers at all stages of the Incident Response lifecycle through our range of proactive and reactive services.
Mar 26th, 2026
Written by: Admin
Exploitation
Overview This post explores how modifying a Dell UEFI firmware image at the flash level can fundamentally undermine platform security without leaving visible traces in the firmware interface. By directly…
Mar 13th, 2026
Written by: Admin
ActiveBreach
13th March 2026 As part of MDSec’s R&D work, we often discover vulnerabilities and develop exploits to support our red team engagements. When researching widely used software, it is often…
Feb 27th, 2026
Written by: Admin
Adversary Simulation
27th February 2026 The MDSec red team are regularly performing research to identify privilege escalation vectors in Windows and macOS for use during red team engagements. Where the indicators in…
Oct 27th, 2025
Written by: Admin
ActiveBreach
Introduction LLVM compiler infrastructure is powerful because of its modular design, flexibility, and rich intermediate representation (IR) that enables deep analysis and transformation of code. Unlike traditional compilers, LLVM separates…
Oct 1st, 2025
Written by: Admin
All
In recent months, a series of high-profile cyber attacks have hit the UK’s retail and automotive industries, targeting major companies like M&S, the Co-op, Harrods, and Jaguar Land Rover (JLR)….
Dec 3rd, 2024
Written by: Admin
ActiveBreach
Introduction On a recent Red Team for a particularly hardened client, we were looking to escalate our privileges in order to move off the endpoint and pivot into the server…
Nov 29th, 2024
Written by: Admin
ActiveBreach
Introduction Nov 29, 2024 Nighthawk C2 – This post is cross posted to the Nighthawk blog. Nighthawk 0.3.3; Evanesco, unveils our latest research. “Evanesco” is a Latin term that means “I…
Oct 29th, 2024
Written by: Admin
All
Following on from our blog post in September, Finding Dora. DORA sets a new standard for how financial institutions and service providers within the EU should handle their digital operations….
Oct 28th, 2024
Written by: Admin
All
Web Application Firewalls (WAFs) help to protect web applications by monitoring, filtering, and blocking HTTP traffic to and from a web service. However, WAFs are too often relied upon as…
Sep 13th, 2024
Written by: Admin
ActiveBreach
The Digital Operational Resilience Act (DORA) is a landmark European Union (EU) regulatory framework that requires mandatory compliance from January 2025. DORA emphasises the importance of resilience for digital assets…