Hunt Or Be Hunted

Countercept by MWR InfoSecurity provides a complete managed service for the detection of and response to cyber attacks. It specializes in defending organizations from targeted attacks from sophisticated criminal groups and nation-state threat actors (APT groups) and offers 24/7 proactive threat hunting. The service is driven by a team with real-world experience in attack simulation and incident response, leveraging an advanced Threat Hunting Platform and Endpoint Detection and Response (EDR) solution.

Beware the 'marketing hype' of machine learning in attack detection...

Read The Latest Paper


It is now common knowledge that MSSPs (Managed Security Service Providers) fall short when it comes to detecting and responding to targeted attacks. To counter these attacks, Countercept provides a Managed Detection and Response (MDR) service that is enhanced with extensive threat hunting. Our service provides a ‪24/7‬, highly skilled hunt team who proactively search for, and respond to threats across the endpoint as well as the entire breadth of the kill-chain. Learn about threat hunting.

Countercept triangle 102

Countercept threat hunting platform

An effective hunt team needs an extraordinary technology platform – not to do the work for them, but to give them the agility to navigate the estate rapidly when detecting and containing compromise. The Countercept Threat Hunting Platform allows attacker actions to be revealed with no reliance on signatures or alerts, meaning Countercept can identify targeted attacks that are unique to your organization and have never been seen before in the wild. FIND OUT MORE

Threat hunting – people, not just tools

Threat hunting is not about giving the latest technology to an existing SOC. It requires new skills, a fresh mindset and a new approach to defense. You cannot rely on technology to reveal compromise automatically; you need skilled threat hunters trained in offensive techniques who understand the attacker mindset. They know what to look for, where to look for it, and what to do to isolate an attack.

I Have An Internal SOC Can you still provide a hunt team?

In short – yes. Countercept acts as an extension to your security team, pairing our expertise of attacker TTPs (Tactics, Techniques and Procedures) with your knowledge of your organization and critical assets. We feed into your SOC’s working processes to provide increased detection capabilities, along with continued education and knowledge transfer for your SOC staff.

I have a MSSP already Can you replace it?

Based on our experience of offensive techniques and carrying out targeted attack simulations on clients’ networks, we find that most MSSPs never detect our advanced attacks. Every week, our incident response teams step in to support blue-chip firms who have ‘ticked the boxes’ with MSSPs but are still being breached. Countercept’s Managed Threat Hunting service can seamlessly replace your traditional MSSP – or work with it, to take your organization to the next level of cyber security.

Why Countercept?

Every company believes it has great people but we can prove it – Countercept is an arm of MWR, which has more than 15 years of experience in targeted attack simulation and cyber defense. MWR are one of a handful of companies accredited by CESG for incident response and hence we typically respond to attacks that bypass traditional or ‘next-gen’ security controls.

We are CREST and CHECK certified, and accredited on the CBEST scheme. We have extensive experience of conducting simulated attacks, so we know exactly how to defend against them.

As a research-led company, we are at the forefront of the industry, as demonstrated by our talks at worldwide conferences and public research through MWR Labs.

Defense driven by an understanding of the attacker mindset

Contact Countercept

Sign up for News & Research +-