Since 1994, Matasano researchers have had founding roles in the first security research labs, discovered new classes of vulnerabilities, secured operating systems, and shipped large software projects. We’ve been behind some of the first breaks in SAN technology, virtualization, and financial protocols. Our work has been featured in Network World, eWeek, Forbes, Macworld, Wired, and the Washington Post, and at conferences ranging from Black Hat to Gartner.
Our practice focus areas include storage, virtualization, financial, middleware, software protection, kernel security, AJAX/Web 2.0, enterprise technology, security product testing, 802.11 and authentication protocols, RF, VOIP and telephony, Windows Vista, Mac OS X, and embedded platforms.
Enterprises need products assessed quickly and accurately, regardless of the technology those products are built on. We're specialists in understanding complex systems, in quickly building security testing frameworks for them, in effectively communicating the details of security flaws, and in providing solid remediation advice.
For over five years, enterprises have worked with Matasano to:
Verify the security of third-party products before deploying them on sensitive networks.
Assess in-house applications and assist development teams in remediating flaws and in avoiding new ones.
Understand the security implications of complex technologies such as middleware, legacy C code, and appliance firmware.
Technology vendors need security teams that understand what it means to ship software. Matasano was founded by software industry veterans. Every Matasano consultant is an expert programmer. We speak the language, working clearly and credibly with software teams.
For over 5 years, vendors have worked with Matasano to:
Review source code and conduct black box testing assessments to validate software before first customer ship.
Build reuseable security testing frameworks for APIs, kernel extensions, file formats, and network protocols.
Trading, financial, and market data systems are a Matasano practice focus. We work with vendors, private firms and institutions to protect the integrity of markets, addressing the distinct security challenges of order entry systems, quoting, routing, settlement, clearing, and middleware.
Matasano excels at complex Ajax-intensive web applications. We deliver fast and thorough web application penetration testing for both enterprise products built in J2EE and .NET and advanced applications built on platforms like Rails, Scala, and Python.
We are industry leaders in reverse engineering and penetration testing shrink-wrap, appliance, and embedded technology. We've handled storage computing; desktop, server, and kernel products in Win32 and Unix; smart grid infrastructure; and network devices.