Security

01 / Cloud security

AWS, GCP, and Azure environments reviewed against threat models we have actually seen exploited. IAM blast-radius, network segmentation, secrets and key handling.

02 / OT/ICS assessment

Passive and active assessment of distribution and transmission SCADA for utility and telco operators. IEC 61850, DNP3, Modbus RTU, IEC 60870-5-104.

03 / Firmware and reverse engineering

Static and dynamic analysis of embedded firmware and native binaries. Extraction, emulation, vulnerability research, and incident triage. Ghidra, IDA, and the patience to read code that was never meant to be read.

04 / Penetration testing

Adversarial engagements run by practitioners, not scanners. Scoped, hands-on assessment with reports the engineers who will fix the findings can actually use.