Pentest People

Dec 21, 2021   |  By Dave Benson
It was early 2003 in central Iraq, a couple of hours before dawn, 30 degree heat, and everything had a green tint through the night vision goggles. I was on an operation with a team from the US Psychological Operations forces (psyops) and an ODA (Operational Detachment Alpha) from the US Special Forces. We'd spent days gathering HUMINT (Human Intelligence) and undertaking reconnaissance on the target. The ODA team was set up for the assault, the psyops were ready to run diversionary tactics and I was on the team providing comms and perimeter security. Authorisation was given from above, the operation began, and the sky lit up with tracer rounds.
Nov 15, 2021   |  By Liam Follin
On 3rd November, Bleeping Computer reported that the BlackMatter Ransomware-as-a-Service group had posted a message alerting users that its operations were ceasing within 48 hours. The message advised affiliates to obtain their decryption keys so that they could continue to extort current victims.
Aug 16, 2021   |  By Chris Rothwell
It used to be that technological innovations such as the internet made the world smaller and bought us all closer together. Sadly, that augmented ability to reach others brought with it a new avenue for unwanted and unpleasant interactions. In 2021, a study by Sapio Research on behalf of Respect in Security, showed around one third of cybersecurity professionals claimed to have personal experience of harassment, either online or in the workplace.
Jun 7, 2021   |  By Andrew Mason
It has been reported that the hack that took down the largest fuel pipeline in the United States and led to fuel shortages across the whole of the East Coast was the result of a single compromised password that was leaked on the Dark Web through a data breach. On April 29th 2021, hackers gained access to the network of Colonial Pipeline Co. via a Virtual Private Network (VPN) connection that allowed the hacker remote access to the corporate network.
Apr 20, 2021   |  By Lewis Fairburn
On 15th April we were delighted to attend the Digital City Awards online ceremony where we scooped two wins, the Cyber Security Project of the Year and the major award category, The Digital City Innovation of the Year Award. This award recognises the novel product or service which has revolutionised the way things are done and made a real difference in its intended field.
Mar 9, 2021   |  By Dave Benson
The final part of this mini Red Team blog series discusses the benefits a Red Team Assessment will bring to your organisation. A security test of any sort is ultimately designed to see how your business can mitigate and learn from any issues found. Yes, compliance can come into this and passing and failing a test is a factor but creating a strong infrastructure to protect the business and customer interests is the key factor here.
Mar 5, 2021   |  By Dave Benson
In part one we discussed what a Red Team Assessment is, but how does a Red Team Assessment differ from a Penetration Test? With a Red Team Assessment, we’re testing the whole company, essentially how it fares up to a worst-case scenario attack, whether that’s by a competitive company engaging in corporate espionage hell-bent on disrupting business, or harvesting data, or a criminal organisation breaking in and stealing physical equipment or damaging key infrastructure.
Mar 2, 2021   |  By Dave Benson
We’re in an age where information is king, misinformation is rife and mass data breaches are commonplace in the mainstream media. Ensuring the security of your organisation’s data, infrastructure and people is paramount and choosing the right service to secure those things is just as important. At Pentest People, we are now delighted to offer our new Red Team Assessment service to our customers. But what is a Red Team Assessment and how does it differ from a Penetration Test?
Feb 25, 2021   |  By Gyles Saunders
Internet dating is a great thing. No longer are you reliant on bumping into that future special someone in a bar, at the workplace, or in the local coffee shop. As humans, our world has never been so connected, our reach so vast and now even finding love the same is true. Firstly, let’s just start by accepting internet dating is a thing and has been a thing before the world went into various states of lockdown, it has been around pretty much since the widespread use of the internet itself.
Dec 21, 2021   |  By Pentest People
Its been 4 amazing years since Pentest People was founded, we've grabbed a few of our team to talk about their time here and offer some light into the culture at Pentest People.
Dec 6, 2021   |  By Pentest People
Our team walkthrough the main scams used by hackers around the festive period, what to look out for and how you can stay protected.
Sep 3, 2021   |  By Pentest People
Today on The Pentest Crowd Liam takes us through his tool codenamed Athena. Followed by two more consultants Alex and Josh giving some first hand advice on how to prevent brute force attacks, and how to compromise
Jun 2, 2021   |  By Pentest People
An insight into the Pentest People Cloud Services w/Josh & Liam Today's tech bite comes from the creators of our AWS, Azure & Microsoft Cloud offering. This episode explores what the services consist of, why they're necessary and why Liam & Josh wanted to explore the world of Cloud!
May 10, 2021   |  By Pentest People
In today's video, Liam takes us through a real-life attack scenario. He walks you through CSRF and Brute force attacks while also highlighting some reverse engineering.
May 5, 2021   |  By Pentest People
Liam jumps on the mic this week to discuss Remote Working, it's not going anywhere and that's why it's key to make sure your home working routine keeps you motivated and sane!
May 3, 2021   |  By Pentest People
Today we introduce you to the author of the innovative Dark Web Monitoring Tool, Cloud & Dark Web Consultant Liam.
Apr 30, 2021   |  By Pentest People
In-House Red Team Expert Dave Benson talks through the Red Team service and why it's so important in the modern day.
Apr 21, 2021   |  By Pentest People
The Pentest Crowd is back with its Spring Edition. This time we invited 4 more consultants to give their first-hand knowledge on a range of hot cybersecurity topics. In this instalment we covered Remote Working, Windows Defender 10 vs Ransomware, Cloud Security, Women in Cyber and Phishing among a few other topics.
Feb 5, 2021   |  By Pentest People
Managing Consultant Alex Archondakis talks us through a hackers methodology. Focusing on threat sources, threat actors and how to analyse said threats. He then walks through the methodology known as 'The Kill Chain'. Talk as seen at the Future of Cyber Security event January 2021.

Pentest People are a UK-based boutique security consultancy focussing on bringing the benefits of Penetration Testing as a Service (PTaaS) to all its clients. This innovative approach to security testing combines the benefits of a consultant-led penetration test and vulnerability assurance through a technologically advanced SecurePortal, providing a living threat system to its clients and benefit through the life of the contract rather than just a single point in time.

Redefining Penetration Testing engagements to bring you Penetration Testing as a Service:

  • Penetration Testing: Pentest People can provide all levels of Penetration Testing based on your exacting requirements. Internal and External assessments can be performed against all types of digital infrastructure.
  • Web Application Testing: Vulnerabilities in modern-day Web Applications have become a major entry point to corporate networks and also have led to many high-profile security breaches.
  • Social Engineering: Pentest People can help you design, plan and execute a Social Engineering engagement that can assess your business-critical controls, policies and procedures within your organisation.

A Fresh Approach to Penetration Testing.