Our best in class red team can deliver a holistic cyber attack simulation to provide a true evaluation of your organisation’s cyber resilience.
Leverage the team behind the industry-leading Web Application and Mobile Hacker’s Handbook series.
MDSec’s penetration testing team is trusted by companies from the world’s leading technology firms to global financial institutions.
Our certified team work with customers at all stages of the Incident Response lifecycle through our range of proactive and reactive services.
Nov 27th, 2015
Written by: Admin
Mobile
Vulnerability Description The Samsung Voice application provides a means to control your smartphone through voice commands, such as initiating calls to the device’s contacts. It is installed by default on…
Oct 8th, 2015
Written by: Admin
Exploitation
During a recent penetration test, MDSec found several vulnerabilities in a RF spectrum analyzer that was exposed to the Internet. The SED Systems Decimator D3 is the third generation of SED’s popular…
Sep 22nd, 2015
Written by: Admin
Hardware
RIPE NCC is building the largest Internet measurement network ever made. RIPE Atlas employs a global network of probes that measure Internet connectivity and reachability, providing an unprecedented understanding of…
Sep 22nd, 2015
Written by: Admin
Exploitation
PonyOS is a hobby Unix-like operating system that uses it’s own kernel, built from scratch. This makes it a great research target for exploring software exploitation concepts. The OS is…
Apr 2nd, 2015
Written by: Admin
Mobile
As you may have heard, our latest publication the Mobile Application Hacker’s Handbook is out. When you’re writing a book you have to agree a number of things with the…
Mar 27th, 2015
Written by: Admin
News
If you’re interested in web and/or mobile security and want to learn some cutting-edge techniques, then we have just the thing! This April and June we’re running two training courses…
Mar 11th, 2015
Written by: Admin
Mobile
We recently became aware of a device known as an IP Box that was being used in the phone repair markets to bruteforce the iOS screenlock. This obviously has huge…
Feb 25th, 2015
Written by: Admin
Mobile
Following on from our previous publications in the Hacker’s Handbook series, MDSec’s director Dominic Chell has co-authored a new book on how to secure mobile applications. The Mobile Application Hacker’s…
Nov 20th, 2014
Written by: Admin
Mobile
At 44CON in September 2014, MDSec presented “GreedyBTS: Hacking Adventures in GSM” where we discussed our research of 2.5G network attacks against mobile devices. We outlined many existing known weaknesses…
May 1st, 2014
Written by: Admin
News
Yesterday we presented some of our exploitation notes on the Heartbleed vulnerability at 44Cafe and shared some of the lessons learned, the slides are available for review here: The accompanying…