Incident Response
Rapid on-site deployment and remote response and mitigation of computer security incidents.
European Cybersecurity Company.
Threat Intelligence. Incident Response. Cyber Advisory.
About Us
Research & Development
Generation of new knowledge on cybersecurity incidents, vulnerabilities and malware, development of specialized tools for prevention, detection and response.
Proactive Security
Ethical hacking, cyber intelligence, technical assessment and hardening of infrastructure and information systems, governance, risk management and compliance, trainings and exercises.
Reactive Security
Cybersecurity incident response, acquisition of digital evidence, digital forensics and court expert witness services. Malware analysis, malware vaccines development and cyber counterintelligence.
0
People trained
0
Malwares analyzed
0
IR and Forensic analysis
0
Penetration tests
0
APT groups faced
0
CVE published
We’re A European Cyber Security Company.
IstroSec is an ethical company that conducts its business activities honestly, apolitically, directly and fairly to all parties involved.
IstroSec’s Vision
To be an international leader in research, development and cyber security services and deliver strong, innovative and effective solutions to tackle cybersecurity challenges.
IstroSec’s Objectives
Our goal is to offer quality professional services to our customers at a reasonable price and to continuously increase our customer’s security resilience.
IstroSec’s Experiences
We have a track record of hundreds of incident response engagements, including APT groups, our own CVEs and countless pentests, malware analyses and trainings.
IstroSec’s Clients
Our customers are SMEs, corporations, Fortune 500 companies and governmental entities across all industries which take cyber security very seriously.
Our Services
Offensive Security
Vulnerability Assessment, Penetration Testing, Red Team and Purple Team Engagements.
Threat Hunting
Active hunting for threats in infrastructure based on TTPs and searching for indicators of compromise.
Defensive Intelligence
Data Leaks Searches and Analysis, ClearWeb, DeepWeb, DarkWeb.
Managed Defense
SOC Level 3+, administration and optimization of EDR, SIEM, SOAR and other cybersecurity technologies.
Digital Forensics
Acquisition of digital evidence, investigation, and reconstruction of security events and incidents. Processing of expert testimonies.
Malware Analysis
Analysis of properties, functionality, origin, potential impacts of malicious code, and reverse engineering.
Attack Simulations
Phishing, Spearphishing, Whaling. Custom Scenarios incl. Custom “Malware”. Simulation of advanced attacks and APT.
Audit and Advisory Services
Audits and Implementations of Security Frameworks, vCISO. Technical Audits and Hardening.
Trainings and Exercises
Trainings for personnel, IT professionals and management. Tabletop exercises and drills.
Incident Preparedness
Assessment of adequacy of processes and technology for swift and effective reaction.
IstroCSIRT Services
Full array of CSIRT services, including 24/7 DFIR and proactive security.
Our References
Our Certificates
GCFE
GIAC Certified Forensic Examiner
GCFA
GIAC Certified Forensic Analyst
GCPN
GIAC Cloud Penetration Tester
GXPN
GIAC Exploit Researcher and Advanced Penetration Tester
GCIH
GIAC Certified Incident Handler
GMLE
GIAC Machine Learning Engineer
CISA
Certified Information Systems Auditor
CRISC
Certified in Risk and Information Systems Control
CISSP
Certified Information Systems Security Professional
OSCP
Offensive Security Certified Professional
OSWP
Offensive Security Wireless Professional
NODEZERO Administrator
Horizon3.ai NodeZero Certified Administrator
NODEZERO Sales Executive
Horizon3.ai NodeZero Certified Sales Executive
NODEZERO Solution Architect
Horizon3.ai NodeZero Certified Solution Architect
CRTP
Certified Red Team Professional
CRTE
Certified Red Team Expert
CRTO
Red Team Operator
CEH
Certified Ethical Hacker
CHFI
Computer Hacking Forensic Investigator
CCNA
Cisco Certified Network Associate
CCDCOE
NATO Cooperative Cyber Defence Centre of Excellence
Enisa
Mobile Threats & Incident Handling; Digital forensics; Artefact Analysis
MCFE
Magnet Certified Forensics Examiner
CCFR
CrowdStrike Certified Falcon Responder
CCFH
CrowdStrike Certified Falcon Hunter
CCFA
CrowdStrike Certified Falcon Administrator
CompTIA CySA+
Cybersecurity Analyst+
CompTIA CASP+
Comptia advanced Security practitioner
SIREN
SentinelOne IR Engineer – SIREN
Microsoft Certified
Security, Compliance, and Identity Fundamentals
Microsoft Certified
Azure Security Engineer Associate
Microsoft Certified
Azure Solutions Architect Expert
AWSC
Advanced Windows Security Course Certified Security Professional
SOC Analyst
SOC Analyst Course Certificate of Completion
CFR
CyberSec First Responder
MITRE ATT&CK Defender
Security Operations Center Assessment
MITRE ATT&CK Defender
Cyber Threat Intelligence
MITRE ATT&CK Defender
Adversary Emulation Methodology
PRINCE2 Practitioner
Practitioner Certificate in Project Management
ITIL
Foundation Certificate in IT Service Management
MITRE ATT&CK Defender
Purple Teaming Methodology
Latest Posts
LummaStealer: The Invisible Thief in Your Network
As part of its services, the IstroSec Managed Defense team provides threat-hunting capabilities, which recently led to the timely detection and mitigation of an active attacker campaign.
EDR vs XDR
Cybersecurity tools like Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) are made to assist organizations in detecting and preventing cyber threats.
GLOBSEC 2023 Bratislava Forum
Like last year, the prestigious international security conference GLOBSEC 2023 Bratislava Forum was held in Bratislava, which was attended by several well-known guests, including the highest state representatives of France, Ukraine, and Slovakia.