Cybersecurity R&D

We break
things to
make them
safer.

Octagon Networks is a team of hackers improving security for everyone. Through offensive research, penetration testing, and responsible vulnerability disclosure — we find the flaws before the adversaries do.

Our ServicesView Research
0+
CVEs Published
0+
Security Assessments
0
Critical Zero-Days
0+
Clients Protected
Services

End-to-end offensive security.

01

Penetration Testing

Comprehensive offensive security assessments to identify vulnerabilities before attackers do. We simulate real-world attacks against your infrastructure, applications, and networks to uncover weaknesses across your entire attack surface.

02

Red Team Operations

Full-scope adversary simulation to test your organization's detection and response capabilities. Our operators use the same tactics, techniques, and procedures as nation-state actors and advanced persistent threats.

03

Code Review

In-depth source code analysis to find security flaws, logic bugs, and hardening opportunities. We manually review your codebase with the eye of an attacker, going beyond what automated scanners can detect.

04

Vulnerability Research

Original research into zero-day vulnerabilities and responsible disclosure of critical findings. Our team has discovered and reported vulnerabilities in products from Juniper, TerraMaster, Apache, and more.

Research

Published vulnerabilities.

View All Research
CVE-2023-36845Critical 9.8
Juniper Junos OS
PHP environment variable manipulation via J-Web allows unauthenticated remote code execution.
CVE-2022-24990Critical 9.8
TerraMaster NAS
API information disclosure leading to unauthenticated remote code execution chain.
CVE-2022-44877Critical 9.8
CentOS Web Panel
Unauthenticated remote code execution via command injection in CWP7.
CVE-2022-46907High 7.5
Apache JSPWiki
Cross-site scripting allowing arbitrary script execution in user browsers.
CVE-2024-XXXXXHigh 7.2
MAMP Server
Multiple security vulnerabilities affecting local development environments.
In the press

Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking

CWP Flaws That Expose Servers to Remote Attacks Possibly Exploited in the Wild

Researcher goes public with WordPress CSP bypass hack

Octagon Networks becomes the first cybersecurity firm to convert balance sheet into bitcoin

Juniper Networks devices impacted by several high-severity bugs

Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking

CWP Flaws That Expose Servers to Remote Attacks Possibly Exploited in the Wild

Researcher goes public with WordPress CSP bypass hack

Octagon Networks becomes the first cybersecurity firm to convert balance sheet into bitcoin

Juniper Networks devices impacted by several high-severity bugs

Ready to secure
your infrastructure?

Get in touch with our team to discuss how we can help protect your organization from sophisticated threats.

Contact Us