SOLUTIONS
> Side Channel Analysis
Ready-to-use side channel tools to assess cryptography algorithms.
> Fault Injection: Laser, EM & Glitching
Make sure your chip withstands different techniques of physical fault injections.
> Firmware Security Analysis
Qualify embedded code binaries without physical devices and benches.
> Security Failure Analysis
Photoemission analysis to explore internal information in a chip.
> Vulnerability Research
Dynamic analyses at a system level for investigating potential vulnerabilities.
> esDynamic for EDU SCA and FI
A learning center for academics to teach and perform side-channel analysis and fault injection
TECHNOLOGIES
> Data Science Platform
esDynamic is a complete data focused platform to leverage the know-how of your team for complex analyses.
> esFirmware Engine
Assess the security of the firmware of IoT devices against logical and physical attacks.
> esReven Engine
Record and replay vulnerability researches within reverse engineering processes and tools.
PROFESSIONAL SERVICES
> Cybersecurity Training
Grow your expertise with training modules driven by a coach.
> Hardware Evaluation Lab
High-end laboratory capabilities specialized in hardware security evaluations.
EXPERTISE
> Mobile App Security
Onboard your Team into your Security Challenges.
> DevSecOps
Integrate the security protections verification in your CI/CD pipeline.
> PCI MPoC
Prepare your product to meet this new mobile payment standard.
SOLUTIONS
> Mobile App Security Testing (MAST)
esChecker SaaS: automating the security testing of your mobile app binary.
PROFESSIONAL SERVICES
> Mobile App Penetration Testing
Testing the resiliency of your Mobile App, SDK or RASP tool.
> Backend Penetration Testing
Testing the resiliency of your Web App, API or Backend Systems.
> Coaching for Mobile App Developers
Providing insights into the mobile app threats and how attackers work by a learning-by-doing approach.
Go to our German website
OUR COMPANY
> Events
CAREERS
> Meet our experts
> Open positions
Join our team!
FOLLOW US
Twitter
Linkedin
Youtube
Github
Gitlab
What is DevSecOps?
Critical issue: the expertise
Hacking is sophisticated and inventive, and, at an accelerating rate, it won’t be slowing down any time soon. The corresponding skill is difficult to find and does not necessarily belong to your core skill set.
eShard’s offering help you fill this gap with:
- MAST Automation
- Pentesting on both client and server sides
- And specialized training to upgrade your team’s skills
esChecker, your MAST companion
You simply cannot afford a manual pentesting for each release. esChecker has been designed to be integrated into your development cycle. Combining SAST and DAST technologies, systematic verifications can take place to control that protections are in place and make sure no space is given to misconfiguration or regression.
You set your security campaign corresponding to your security policy. Security verification can now be integrated into your QA process.
In-depth vulnerability analysis with pentesting
Our highly specialized team may scrutinize your mobile application.
If you choose a whitebox approach: the code will be required. Otherwise, they can also work in a blackbox approach by stressing the mobile app binary, either an Android or iOS.
At the end, you get a proficient vulnerability analysis report with suggestions of remediation. Doing so, you know what an attacker would have been able to do.
Skill your team
It is always better to know what we are doing. And it is even more important when it comes to developing the right security.
Our esCoaching program is ideal to provide your team with training sessions. It is technical and specialized - the best way to embrace a “learn by doing” approach, where your team will see how attackers' tools work. Awareness is one ingredient of success.
