Penetration Testing is one of the best ways to test the security infrastructure. While the technique has been used for years now for security assessments, the processes and tools associated with this approach stick to convention. But the threat landscape is changing continuously and cybercriminals are perpetually developing better ways to debilitate networks. Hence, it is important to use custom tools and the methodologies need to constantly evolve to stay ahead of the malicious actors. One of the world leaders in penetration testing and information security is Silent Break Security.
Brady Bloxham, very early on in his career identified a difference in how cyberattacks were happening and how the private sector merely called it “penetration test.” The information security industry needed to modernize to keep up as threats evolved. The founder felt that there was a requirement for a company that could provide assessments which were customized for each organization. With a focus of providing security assessments, Bloxham founded Silent Break Security in 2011.
The team at Silent Break has had hands-on experience dealing with national-level threats as many of its employees have previously worked for Department of Defense (DoD) agencies like National Security Agency (NSA) and the United States Air Force Network Warfare Squadron. Having worked at the highest level, the team at Silent Break specializes at both offensive and defensive security.
Black Box Testing
Every organization is different and each one requires a different kind of engagement to fit its own security needs. Silent Break Security offers many services in the form of black-box, white-box, or a hybrid approach. Silent Break uses its security progression lifecycle to help its clients determine which combinations of services will suit their environment.
But we know that the black-box approach is best when it comes to representing the actual process of a hacker. While the company can handle white-box and hybrid approach to penetration testing, their expertise at black-box stands out in the security industry.
The typical security assessments involve black-box penetration testing which involves the use of open-source products, automated scans, and attacks to identify vulnerabilities, engagements scoped to last a week or two in effort to assist clients in becoming compliant. On top of this, the functionality of the tools used by companies is pretty limited which in-turn reduces their effectiveness. But attackers are not bound by timelines or by the scope of the traditional penetration tests. Because of this very reason we see more and more organizations being breached every year.
Silent Break’s black-box penetration testing breaks convention and goes beyond. The company applies its first-hand knowledge from its DoD and NSA experience to conduct “real” cyber-attacks along with usage of custom code, attack methodologies and stealth persistence to complete a comprehensive assessment. The company quintessentially goes that extra mile that other companies refuse to go.
Training security enthusiasts
We often see companies use their knowledge to help themselves and their clients but Silent Break Security breaks this industry stereotype. To make this happen, the company sponsors PwnOS project which provides free and hands-on training for security enthusiasts.
Meet the security luminary
Brady Bloxham, Founder and Principal Security Consultant
Mr. Bloxham has been in the information security industry for more than 15 years. He has worked with top-tier government agencies where his work has earned him awards for network security operations.
He is an adjunct professor at The University of Utah’s David Eccles School of Business (DESB) where he teaches Telecommunications and Computer Security in his spare time. He’s an avid speaker and has spoken at various conferences. His PwnOS project is used as an educational tool for students.
He earned his B.S. in Information Systems from the Marriott School of Business at the Brigham Young University. He also has a MBA in Information Assurance from the Idaho State University.
“We were really impressed by the detail and results. It’s almost laughable what your competitors put out in comparison.” – Jay, Utility Company
“Foot Locker has worked with Silent Break for over 2 years. During that time we have found them to be highly knowledgeable both in planning and execution of any engagement. I have no hesitation in recommending Silent Break to any company that is looking for an information security partner.” – Jason Black, Foot Locker
“I want to thank the Silent Break team for an outstanding experience with collaboration assessment. You guys blew us away with your knowledge, skills, and professional demeanor. I have been a part of annual assessments for over 20 years, and this was by far the most enlightening and productive assessment I have ever been part of.” – Jeff Olson, National Guardian Life Insurance
“From compliance to sophisticated adversary simulations to collaborative assessments to custom red team tool-kits and training, we customize our approach to best help organizations improve their security maturity.”
“Using our security progression lifecycle, we help our clients determine which service or combination of services is best suited for their environment.”
“Going far beyond a simple “check the box” approach, we are passionate about security. Our philosophy is the engagement is not over until we have impressed.”