Security Research Labs is an IT security consultancy striving for impact through cutting edge research, high-impact consulting projects and innovative SaaS Software

Research
Blog

Hacking
Projects

Consulting
Services

Security
Software

RESEARCH BLOG

We are security experts and strive to be at the cutting edge

This blog features insights from our technical research, where we look at critical systems and highlight key security issues.

EXPLORE THE BLOG

FEATURED

Heading

Blue Merle: Reducing your cellular footprint

Mobile network operator tracking methods present privacy risks for users of 4G LTE routers, even those designed for user anonymization. Our open-source blue merle project mitigates those affecting the GL.iNet Mudi (GL-E750) router.

NEW

Heading

EDRs decrease your enterprise security, unless properly hardened

Through default credentials we gained full access to the popular Cynet 360 EDR system, its privileges, and functions. Additionally, we discovered three high-severity vulnerabilities in the EDR, arising from weak access control on API endpoints.

NEW

Heading

Smarter is not always wiser: How we hacked a smart payment terminal

Smart payment terminals can be vulnerable due to their expanded capabilities and the use of end-of-life OS, which result in a large attack surface. This post shares our experience hacking a popular smart point of sale device during an SRLabs retreat.

NEW

Heading

Hacking mobile networks has gotten a lot more interesting with 5G and Open RAN

Cloud security is often the weakest link in modern 5G networks according to our red team hacking assessments. Telcos have an opportunity now to embrace cloud security best practices and make 5G networks much more hacking resilient.

HACKING PROJECTS

We enjoy building tools and sharing them

Over the last several years we have created several open source initiatives to help improve security. Feel free to browse the following projects and help contribute.

Detect mobile networks abuse on your Android phone.

Check protection capabilities of networks world-wide.

Find security flaws in SIM cards.

Collect threat information about reprogrammable USB peripherals.

Show issues in outdated access and payment cards.

Join our growing research team.

CONSULTING SERVICES

We strive for real-world impact at scale

Our consulting for global technology leaders has a direct impact on people, processes, and technologies that underpin the security of billions of people’s digital lives every day. If you are interested in our projects, collaborating or proposing a project of your own, please feel free to get in touch.

Employe Luca M.

Employee Kim & Patrick