Contact us: info@tenendo.com

Tenendo as a company consolidates extensive knowledge and rich hands-on experience of the best industry experts in a number of areas, ranging from offensive security to SecureSDLC and QA. The primary division of Tenendo is the Offensive Operations team, responsible for red teaming/adversary simulation and penetration testing. Its main focus is simulating an advanced threat by employing similar techniques and establishing analogous internal processes, such as:

  • A lot of time spent on internal research
  • An established private tooling development process
  • Additional attention is paid to social engineering, OSINT, or on-site activities that are usually left out-of-scope for compliance penetration tests
  • A demonstrated ability to simulate a known APT group

Tenendo employs experts in a number of offensive security fields that are capable of working both as a group or as a self-sufficient red team operator. We constantly develop our technical skills and undergo training and certifications, which include:

  • Offensive Security courses (OSCP, OSEP, AWAE, OSED, OSMR, OSWP)
  • Sektor7 malware and evasion development training
  • Pentester Academy and HackTheBox adversary simulation labs (CRTE, HtB Pro Labs 1-3)
  • Private social engineering and long-term offensive operation training from other experienced teams

We try to make sure our Offensive Operation team does not only provide excellent technical services but that the results make a measurable impact on the Customer’s security practices. Tenedo will conduct on-demand Purple Team exercises and provide consultancy for our red team operator to improve detection and monitoring. We are also open to sharing our private research with customers to ensure that they are adequately protected against emerging threats.

Experience and accreditations

Cybersecurity:

  • OSCP – Offensive Security Certified Professional
  • OSMR – Offensive Security macOS Researcher
  • OSCE3 – Offensive Security Certified Expert 3
    • OSEP – Offensive Security Experienced Penetration Tester
    • OSED – Offensive Security Exploit Developer
    • OSWE – Offensive Security Web Expert
  • OSWP – Offensive Security Wireless Professional
  • CRTO – Certified Red Team Operator
  • CRTE – Certified Red Team Expert
  • CRTL – Certified Red Team Lead
  • CRTS – Certified Red Team Specialist
  • CGRTS – Certified Google Red Team Specialist
  • CARTS – Certified AWS Cloud Red Team Specialist
  • CyberOps Associate
  • Cybersecurity Essentials
  • CertifiedAppSecPractitioner (CAP)
  • Certified Android Exploit Developer
  • Certified Mobile Pentester (CMPen-Android)
  • Certified Mobile Pentester (CMPen-iOS)
  • API Penetration Testing
  • eMAPT – eLearnSecurity Mobile Application Penetration Tester
  • Burp Suite Certified Practitioner (also listed as BSCP)
  • HTB CBBH – Hack The Box Certified Bug Bounty Hunter
  • eJPTv2 – INE Security Junior Penetration Tester

Training Labs:

  • Hack The Box Pro Lab Offshore (Penetration Tester Level III)
  • Hack The Box Pro Lab RastaLabs (Red Team Operator Level I)
  • Hack The Box Pro Lab Cybernetics (Red Team Operator Level II)
  • Hack The Box Pro Lab APTLabs (Red Team Operator Level III)
  • Hack The Box Pro Lab BlackSky: Blizzard (GCP)
  • Hack The Box Pro Lab BlackSky: Cyclone (Azure)
  • Hack The Box Pro Lab BlackSky: Hailstorm (AWS)
  • VHL – Penetration Testing Course
  • VHL Advanced+ – Penetration Testing Course Advanced+
  • Evilginx Mastery – Evilginx Mastery
  • SEKTOR7 WE – Windows Evasion
  • SEKTOR7 MDI – Malware Development Intermediate
  • SEKTOR7 MDA 1 – Malware Development Advanced – Vol.1
  • SEKTOR7 MDA 2 – Malware Development Advanced – Vol.2
  • eWPTXv2 – Web application Penetration Tester eXtreme

Compliance and information security:

  • CISA – Certified Information Systems Auditor
  • CCSP – Certified Cloud Security Professional
  • CRISC – Certified in Risk and Information Systems Control
  • CGEIT – Certified in the Governance of Enterprise IT
  • CISM – Certified Information Security Manager
  • ISO 27001 ISMS LA ISO 27001 – Certified ISMS Lead Auditor
  • ISO 27001 – Lead Implementor
  • NIST CSF 2.0 – Lead Implementor

Test consultancy:

  • CTAL-TM – ISTQB Advanced Level Test Manager
  • CTAL-TTA – ISTQB Advanced Level Technical Test Analyst