Evolved Penetration Testing Services

We help organisations evolve into secure, resilient and compliant businesses in an ever connected world through our Advanced Penetration Testing services. From a simple web application through to a prototype Hypercar, we can test it.

Hedgehog Security is a CREST approved member company operating in the UK, across Europe, the Middle East and Asia; and is a NCSC approved Penetration Testing firm.

OUR SERVICES

Penetration Testing

Our Penetration Testing service allows you to identify where weak-points exist in your cyber security. We are a CREST member company with a number of testers available for your projects world wide. Read more.

IT SECURITY HEALTH CHECK

We perform CREST approved IT Security Health Checks, performing a complete security audit of your digital infrastructure. From advanced vulnerability assessments to full firewall reviews, our IT Health Check service is the most comprehensive on the market. Read More.

VULNERABILITY ASSESSMENTS

Vulnerability Scanning provides you with a view of the vulnerabilities present in your systems on a regular basis. We can perform on off or regular scheduled vulnerability assessment as you require. Read More.

CYBER ESSENTIALS

Do you need Cyber Essentials or Cyber Essentials Plus? We can help. We offer a pain free solution to achieving your Cyber Essentials and Plus certifications as a highly competitive price. Read More.

Search our Site

news

Featured
News Roundup for 12th July 2019
News Roundup for 12th July 2019

News roundup for the 12th of July 2019.

Read More →
Why Clickjacking is bad and some pentest firms are wrong
Why Clickjacking is bad and some pentest firms are wrong

I work with a fair few ladies and gents who do bug bounties and while sitting on the beach during one of our hack on the beach sessions, I posed the question “How friggin evil is clickjacking, PoC or GTFO.” The challenge was set, and here is what we decided.

Read More →
Linux Kernel Denies Service
Linux Kernel Denies Service

Four recent vulnerabilities have been uncovered by the one and only Netflix researchers within the FreeBSD and Linux kernels which may result in denial of service.

Read More →
Sometimes it pays to walk away
Sometimes it pays to walk away

The second post in my series from the darkened room; sometimes I walk away.

Read More →
Google Calendar Attacks Unsuspecting Mobile Users!
Google Calendar Attacks Unsuspecting Mobile Users!

A very sophisticated cyber phishing attack targets Gmail users through fraud and unwelcome Google Calendar notifications. This campaign takes advantage of a single common default feature for people using Gmail on their smartphone: “Calendar invites automatically pop up on phones, prompting users to accept or decline them.”

Read More →
Advanced Penetration Testing - When the world crashes down
Advanced Penetration Testing - When the world crashes down

Can a seasoned security professional beat the world’s best security software and mitigation? This job certainly found out.

Read More →
News Roundup for 28 June 2019
News Roundup for 28 June 2019

News roundup for 28 July 2019. As the world prepares for another mass worm invasion in the form of BlueKeep, we see more zero days, breaches of privacy and epic fails.

Read More →
GCHQ proposes ghost user to encrypted messaging services
GCHQ proposes ghost user to encrypted messaging services

Bruce Schneier, Richard Stallman and a number of good tech companies are resisting hard against GCHQ proposals that to add a "ghost user" to encrypted messaging services.

Read More →
Oh No, its the CIA
Oh No, its the CIA

Fundraising by the CIA? Or just another scam?

Read More →

Testimonials

Hedgehog have worked with us for since 2010 and have streamlined the entire IS function, helped us achieve ISO27001 and turned security in a business development asset. I would highly recommend their CCA service to any business that does not have its own CISO.

IT Director - Northcott Global Solutions

Hedgehogs tailored monthly Cyber Risk Reports mean we can reduce the effort needed to maintain our ISO27001 compliance. In fact, their CCA program means we can focus on doing business rather than worrying about maintaining compliance. It keeps us, and our clients, happy.

Managing Director - Masbro Insurance

Latest Tweets