NaradMuni Bot
Hello! I'm NaradMuni — CyRAC's AI security assistant. Ask me about CVEs, threat actors, security best practices, or how CyRAC can help your organisation.
NaradMuni Bot
Hands-on threat hunters, red teamers, and incident responders protecting organisations of all sizes — before, during, and after attacks. Research-first. Battle-tested.
Our team actively discovers and discloses vulnerabilities. We bring original research into every engagement — not just commodity tooling. 12+ CVEs published and counting.
When you're under attack, you talk directly to the engineer handling your incident — not a ticketing system. 4-hour response SLA, 24/7, with zero bureaucracy.
Deep understanding of the Indian threat landscape, regulatory environment (CERT-In, SEBI, RBI), and the unique challenges faced by Indian enterprises and startups.
We go beyond automated scanning — our engineers manually exploit what tools miss.
Full adversary emulation using real-world TTPs to stress-test people, process, and technology.
Secure your cloud from misconfiguration, privilege escalation, and data exposure risks.
When you're under attack, we contain fast, investigate thoroughly, and help you recover cleanly.
We understand your environment and threat concerns — no sales pitch.
Tailored scope, clear deliverables, and a fixed timeline agreed upfront.
Hands-on work by senior engineers — you get live updates, not radio silence.
Executive and technical reports with prioritised, actionable remediation steps.
Free re-test of critical findings. We don't close until you're actually safer.
LLM-generated, context-aware lures are bypassing traditional filters and security awareness training at scale. Attackers are personalising at costs near zero.
Push fatigue, SIM swapping, and CSRF-based bypass are making legacy MFA unreliable. Phishing-resistant FIDO2 keys are now the minimum bar for privileged access.
Perimeter-based security models are failing against supply chain attacks. Identity-aware proxies and microsegmentation are the foundational shift organisations must make.
Overprivileged IAM roles, public S3 buckets, and exposed metadata endpoints account for the majority of cloud breaches we investigate. Posture management is critical.
Typosquatting, dependency confusion, and malicious package updates are a growing vector. SBOMs and dependency pinning are now security requirements, not nice-to-haves.
Banking trojans, sideloaded APKs, and insecure deep-link handling are rampant in Indian apps. Mobile VAPT is still treated as optional by most organisations.
The difference between IR and IH isn't just semantic — it determines whether your team survives a breach or drowns in it.
A step-by-step breakdown of how a cross-site request forgery chain completely defeats two-factor authentication protections.
Building production-ready Sigma detections from real ransomware TTPs we observed during active incident response engagements.
How attackers silently take over accounts by exploiting password reset flows — no brute force, no phishing, just a subtle HTTP header manipulation.
Actively exploited in ransomware campaigns. Patch Tuesday May 2025 fix available — apply immediately to all Windows Server endpoints.
Threat actor group is calling IT help desks with cloned executive voices to reset MFA. Verify all reset requests via out-of-band callback to known numbers.
Packages mimicking popular Indian payment gateway SDKs are exfiltrating API keys. Audit your package.json dependencies immediately.
CyRAC — Cyber Research & Analysis Center — is a team of hands-on threat hunters, incident responders, red teamers, and security engineers dedicated to protecting organisations of all sizes.
We're not a traditional consulting firm. We combine original vulnerability research with battle-tested execution. Our engineers have handled active ransomware incidents, discovered and responsibly disclosed critical CVEs, and built detection engineering pipelines used in production SOCs.
We translate complex risk into clear, prioritised, actionable steps — and we stay until the job is actually done.
Tell us about your environment, your concern, or an active incident. You'll speak directly to a senior engineer — not a salesperson. We respond within 4 hours, around the clock.
Your information is confidential. NDA available on request.