The price of a zero-day
Damage costs can range from a couple of hundred dollars to even $250K per vulnerability. Consider whether it is worth taking the risk!
About us
Welcome to SEARCH-LAB
Pioneering Cybersecurity Innovations Since 1999
Founded at the Budapest University of Technology and Economics, SEARCH-LAB has been at the forefront of cybersecurity research and development. Our journey began as an academic initiative and evolved into SEARCH-LAB Ltd in 2002, to meet the growing demand for professional cybersecurity services.
Our expertise
SEARCH-LAB excels in the security testing and evaluation of ICT products, specializing in the security of embedded systems like CPEs. We are industry leaders in providing robust security solutions that guard against the most sophisticated threats.
We are actively involved in various industrial initiatives, not just keeping up with but driving the state of the art in security technologies. Our commitment extends beyond services; we are building a safer digital world through education, innovation, and collaboration.
Secure Coding Academy
Tailored software security courses designed for large development teams, enhancing skills and knowledge in secure coding practices.
Feel free to navigate through our website to learn more about how we can help secure your digital landscape, or contact us directly to discuss your cybersecurity needs.
Our services
Security Evaluation
Secure your digital future with SEARCH-LAB's comprehensive security evaluation services. Our expert team employs cutting-edge methodologies to assess vulnerabilities, ensuring your IT products are fortified against evolving cyber threats. Trust us to provide a thorough risk assessment that prepares your systems to withstand any security challenge.
SCL Security Certification Level
Elevate your product's market value with our SCL Security Certification. This service offers a detailed security certification process that benchmarks your products’ resiliency against attacker potential. Achieve and display the SCL certification to reassure clients and stakeholders of your commitment to superior security practices.
MEFORMA Security Evaluation Methodology
Unlock the potential of robust cybersecurity with our MEFORMA Security Evaluation Methodology. This pioneering service leverages proprietary techniques to meticulously analyze and fortify your digital infrastructure. Designed for precision and depth, MEFORMA evaluates your systems against the latest security threats, ensuring comprehensive protection. Our analysts provide clear, actionable insights that enhance your defenses and secure your operations. With MEFORMA, you're not just defending against threats, you're staying several steps ahead of them.
Our Solutions
At SEARCH-LAB, we empower your cybersecurity with state-of-the-art tools designed to tackle today's most daunting digital threats. From comprehensive evaluations to real-time vulnerability detection, our innovative tools are tailored to enhance the security and efficiency of your IT infrastructure.
Discover how our advanced technologies can transform your approach to cybersecurity, ensuring you stay ahead of potential risks in an ever-evolving digital landscape.
DeltAICert: Revolutionizing Security Evaluations
We are interested in joining initiatives in Horizon 2020 where security is critical, and an SME partner from Hungary would fit well to the consortium.
With DeltAICert, we've developed an advanced industry-level tool to enhance security evaluations to catch up with the rapid development cycles of yout software. Our tool aids in analyzing and automating security evaluations by concentrating on the changes between releases. The tool supports various security certificaiton schemes.
With increasing threats, Gartner forecasts a threefold increase in software supply chain attacks by 2025. However, our tool facilitates quicker identification of vulnerabilities through effective use of delta evaluation, reducing the time spent uncovering threats and enhancing overall security resilience.
AIFix: Improve software robustness
We are interested in joining initiatives in Horizon 2020 where security is critical, and an SME partner from Hungary would fit well to the consortium.
The AIFix searches for potential vulnerabilities and robustness improvement opportunities in the source code – guided by commit classification concentrating on security relevant parts of the application to spare the otherwise computationally demanding task of traversing the whole codebase – and natural language processing techniques harnessing the knowledge from the large language models we locally trained. AIFix has a VSCode plugin UI for interacting with the developers (for selecting accepting, rejecting, modifying generated fixes and initiating the execution of the tool) and supports various programming languages.
R&D&I
Research, Development and Innovation
Due to our expertese in security evaluations, SEARCH-LAB has elaborated research expertise, methods and tools of security evaluation and testing, software security and malware analysis, and is an experienced partner of European R&D projects.
Our track record of dozens of successful research grants goes back as far as the FP5 EU programmes. Around ten years ago the laboratory also extended its research capabilities with machine learning and artificial intelligence topics and integrated them into our cybersecurity solutions.
We are interested in joining initiatives in Horizon Europe where cybersecurity and artificial intelligence are critical aspect, and an experienced and reliable SME partner would fit to the consortium.
Research expertise and interests
- Cybersecurity evaluation and certification assisted by artificial intelligence methods
- Common Criteria, EUCC and lightweight evaluation methodologies
- Methods and tools for security evaluation and automated security testing
- Machine learning and artificial intelligence-based identification and correction of software vulnerabilities
- Security of cyber-physical systems (CPS)
- Swarm robotics and AI
Possible contributions to projects
- Automated machine learning based source code corrections
- Artificial intelligence-based delta evaluation and delta certification tools development
- Post quantum cryptography and quantum communication (EuroQCI)
- Application security training, short term technical courses and scalable company-wide educational programs
CYRUS
The CYRUS project offers a personalized training system focused on cybersecurity for transport and manufacturing sectors. By employing innovative methods like virtualization, cyber-range simulations, and work-based learning, it trains employees to identify and tackle cyber threats efficiently, catering to different roles and expertise levels within an organization. The tailor-made training adjusts to participants’ skills and needs, promoting a robust cybersecurity competency throughout the company.
CROSSCON
The CROSSCON project aims to reinforce IoT security by creating a universally compatible, portable, verified security stack with modular features. It provides a unified security approach and includes a Trusted Execution Environment (TEE) for devices devoid of security features. The project also includes open-source stack specifications and reference implementation.
Research partner highlights
Career
Are you a match for our innovative company?
To give you an idea of what we do in our day-to-day business, here are some examples:
- We explore and evaluate the latest and greatest gadgets, learning new technologies on the way
- We motivate continuous development of internal tools to support our evaluations
- We travel to all corners of the world to train engineers and managers on security
- We participate in international R&D projects with some great partners to see and create the future
- We grow our plants, water our flowers on the terrace and feed our pets in the terrarium
- We regularly go and do sport together
If someone would like to join us, the following requirements are an absolute must:
- University studies - a systematic approach
- Fluent written English; being a good speaker and communicator is even better
- Learning quickly and independently
- Good algorithmic skills
The following advantages will help you to gain recognition in our interview room:
- MSc in computer science, electrical engineering or a closely related field
- Research or academic background, post-grad degree
- Solid programming skills - the more languages the better; knowledge of assembly and machine code is a definite plus
- Experience with multiple programming and operating platforms (especially Linux and embedded systems)
- IT security knowledge or at least aptitude
- Self-dependent and creative problem solving
- Work experience in a similar field and/or independent roles
At SEARCH-LAB, fun already starts at the first meeting - don't hesitate to apply!
Blog
Revolutionize API testing by leveraging Generative AI to 'Automate the Automator'
Have you heard about embedding? If the answer is 'no', then this post is for you.
Contact
General inquiries
Sales
Research & Development
Public Relations
Careers
Address
Headquarters and Mailing Address
SEARCH-LAB Ltd.
Budafoki út 187-189. Entrance C
Budapest, 1117 Hungary
PGP Public Key
Public key of info@search-lab.hu and signing key of all SEARCH-LAB issued personal PGP keys.
Phone Numbers
Phone
Fax
Tax Numbers
Hungarian Tax Number
12796560-2-43
European VAT ID
HU 12796560