Be The Hunter, Not The Prey

Countercept by MWR provides a complete managed service for the detection and response to cyber attacks. It specializes in targeted attacks from sophisticated criminal groups and nation-state threat actors (APT groups) and offers 24/7 proactive threat hunting. The service is driven by a team with real-world experience in attack simulation and incident response, leveraging an advanced endpoint solution.

Beware the 'marketing hype' of machine learning in attack detection...

Read The Latest Paper

MDR – a new class of service

Countercept is a ‘managed detection and response’ service (MDR) that puts emphasis on skilled threat hunters, rather than relying purely on technology. MDR services are an evolution of attack-detection methods and technologies where traditional MSSPs (managed security service providers) fall short. Proactive threat hunting, by a team trained in offensive techniques, is the most effective way to defend against targeted attacks. FIND OUT MORE

CC Website Graphics ImageA AW

Our hunting technology stack

An effective hunt team needs an extraordinary technology platform – not to do the work for them, but to give them the agility to navigate the estate rapidly when detecting and containing compromise. The Countercept EDR (Endpoint Detection and Response) tool, Deteqt, allows attacker actions to be revealed with no reliance on signatures or alerts.  FIND OUT MORE

Threat hunting – people, not just tools

Threat hunting is not about giving the latest technology to an existing SOC. It requires new skills, a fresh mindset and a new approach to defense. You cannot rely on technology to reveal compromise automatically; you need skilled threat hunters trained in offensive techniques who understand the attacker mindset. They know what to look for, where to look for it, and what to do to isolate an attack.

I Have An Internal SOC Can you still provide a hunt team?

In short – yes. Countercept acts as an extension to your security team, pairing our expertise of attacker TTPs (tactics, techniques and procedures) with your knowledge of your organization and critical assets. We feed into your SOC’s working processes to provide increased detection capabilities, along with continued education and knowledge transfer for your SOC staff.

I have a MSSP already Can you replace it?

Based on our experience of offensive techniques and carrying out targeted attack simulations on clients’ networks, we find that most MSSPs never detect our advanced attacks. Every week, our incident response teams step in to support blue-chip firms who have ‘ticked the boxes’ with MSSPs but are still being breached. Countercept’s managed detection and response service can seamlessly replace your traditional MSSP – or work with it, to take your organization to the next level of cyber security.


Why Countercept?

Every company believes it has great people but we can prove it – Countercept is an arm of MWR, which has more than 13 years of experience in targeted attack simulation and cyber defense. We are one of six companies accredited by CESG for incident response and hence we typically respond to attacks that bypass traditional or ‘next-gen’ security controls.

We are CREST and CHECK certified, and accredited on the CBEST scheme. We have extensive experience of conducting simulated attacks, so we know exactly how to defend against them.

As a research-led company, we are at the forefront of the industry, as demonstrated by our talks at worldwide conferences and public research through MWR Labs.

Defense driven by an understanding of the attacker mindset

Contact Countercept

Sign up for News & Research +-