Operations management
Operations Management assists the partners in all phases of the activities requested based on their specific needs: from planning to final debriefing. It manages and coordinates the daily activities of six Units, each specialized in different but complementary tasks, to proactively address all the challenges related to operational cybersecurity.
Intelligence Research & Analysis Unit
It deals with the collection, analysis and contextualization of information from various sources, with the aim of generating strategic, operational and tactical threat intelligence. It supports the attacks prevention and the informed decision-making process.
Malware Development Unit
It designs and develops payloads and custom tools for red teaming activities, Advanced Persistent Threat simulation and advanced penetration testing. It includes EDR/AV evasion capabilities, modular stagers and resilient C2s.
Social Media Intelligence Unit
It is specialized in the acquisition and analysis of data from social media, forums and online communities. It identifies emerging threats, trends, malicious actors and disinformation campaigns, contributing to their profiling and attribution.
Data Science Unit
It applies machine learning, predictive analysis and clustering techniques to large volumes of security data. It supports threat detection, behavioral profiling and automation of the analysis of complex events.
Vulnerability Research & Exploitation Unit
Dedicated to the identification, study and development of exploits on zero-day and n-day vulnerabilities. Provides support to cyber intelligence operations and contributes to proactive security with responsible or private vulnerability disclosure activities.
Cyber Operational Units
Team specialized in Red Team operations, adversary simulation and penetration tests on complex infrastructures. Simulates real attacks to test the defensive resilience of organizations.