The price of a zero-day

Damage costs can range from a couple of hundred dollars to even $250K per vulnerability. Consider whether it is worth taking the risk!

Welcome to SEARCH-LAB

Pioneering Cybersecurity Innovations Since 1999

Founded at the Budapest University of Technology and Economics, SEARCH-LAB has been at the forefront of cybersecurity research and development. Our journey began as an academic initiative and evolved into SEARCH-LAB Ltd in 2002, to meet the growing demand for professional cybersecurity services.

Our expertise

SEARCH-LAB excels in the security testing and evaluation of ICT products, specializing in the security of embedded systems like CPEs. We are industry leaders in providing robust security solutions that guard against the most sophisticated threats.

We are actively involved in various industrial initiatives, not just keeping up with but driving the state of the art in security technologies. Our commitment extends beyond services; we are building a safer digital world through education, innovation, and collaboration.

Secure Coding Academy

Tailored software security courses designed for large development teams, enhancing skills and knowledge in secure coding practices.

SCADEMY

Feel free to navigate through our website to learn more about how we can help secure your digital landscape, or contact us directly to discuss your cybersecurity needs.

Our services

Security Evaluation

Secure your digital future with SEARCH-LAB's comprehensive security evaluation services. Our expert team employs cutting-edge methodologies to assess vulnerabilities, ensuring your IT products are fortified against evolving cyber threats. Trust us to provide a thorough risk assessment that prepares your systems to withstand any security challenge.

SCL Security Certification Level

Elevate your product's market value with our SCL Security Certification. This service offers a detailed security certification process that benchmarks your products’ resiliency against attacker potential. Achieve and display the SCL certification to reassure clients and stakeholders of your commitment to superior security practices.

MEFORMA Security Evaluation Methodology

Unlock the potential of robust cybersecurity with our MEFORMA Security Evaluation Methodology. This pioneering service leverages proprietary techniques to meticulously analyze and fortify your digital infrastructure. Designed for precision and depth, MEFORMA evaluates your systems against the latest security threats, ensuring comprehensive protection. Our analysts provide clear, actionable insights that enhance your defenses and secure your operations. With MEFORMA, you're not just defending against threats, you're staying several steps ahead of them.

Our Solutions

At SEARCH-LAB, we empower your cybersecurity with state-of-the-art tools designed to tackle today's most daunting digital threats. From comprehensive evaluations to real-time vulnerability detection, our innovative tools are tailored to enhance the security and efficiency of your IT infrastructure.

Discover how our advanced technologies can transform your approach to cybersecurity, ensuring you stay ahead of potential risks in an ever-evolving digital landscape.

DeltAICert: Revolutionizing Security Evaluations

We are interested in joining initiatives in Horizon 2020 where security is critical, and an SME partner from Hungary would fit well to the consortium.

With DeltAICert, we've developed an advanced industry-level tool to enhance security evaluations to catch up with the rapid development cycles of yout software. Our tool aids in analyzing and automating security evaluations by concentrating on the changes between releases. The tool supports various security certificaiton schemes.

With increasing threats, Gartner forecasts a threefold increase in software supply chain attacks by 2025. However, our tool facilitates quicker identification of vulnerabilities through effective use of delta evaluation, reducing the time spent uncovering threats and enhancing overall security resilience.

AIFix: Improve software robustness

We are interested in joining initiatives in Horizon 2020 where security is critical, and an SME partner from Hungary would fit well to the consortium.

The AIFix searches for potential vulnerabilities and robustness improvement opportunities in the source code – guided by commit classification concentrating on security relevant parts of the application to spare the otherwise computationally demanding task of traversing the whole codebase – and natural language processing techniques harnessing the knowledge from the large language models we locally trained. AIFix has a VSCode plugin UI for interacting with the developers (for selecting accepting, rejecting, modifying generated fixes and initiating the execution of the tool) and supports various programming languages.

R&D&I

Research, Development and Innovation

Due to our expertese in security evaluations, SEARCH-LAB has elaborated research expertise, methods and tools of security evaluation and testing, software security and malware analysis, and is an experienced partner of European R&D projects.

Our track record of dozens of successful research grants goes back as far as the FP5 EU programmes. Around ten years ago the laboratory also extended its research capabilities with machine learning and artificial intelligence topics and integrated them into our cybersecurity solutions.

We are interested in joining initiatives in Horizon Europe where cybersecurity and artificial intelligence are critical aspect, and an experienced and reliable SME partner would fit to the consortium.

Research expertise and interests

Cybersecurity evaluation and certification assisted by artificial intelligence methods
Common Criteria, EUCC and lightweight evaluation methodologies
Methods and tools for security evaluation and automated security testing
Machine learning and artificial intelligence-based identification and correction of software vulnerabilities
Security of cyber-physical systems (CPS)
Swarm robotics and AI

Possible contributions to projects

Automated machine learning based source code corrections
Artificial intelligence-based delta evaluation and delta certification tools development
Post quantum cryptography and quantum communication (EuroQCI)
Application security training, short term technical courses and scalable company-wide educational programs

CYRUS

The CYRUS project offers a personalized training system focused on cybersecurity for transport and manufacturing sectors. By employing innovative methods like virtualization, cyber-range simulations, and work-based learning, it trains employees to identify and tackle cyber threats efficiently, catering to different roles and expertise levels within an organization. The tailor-made training adjusts to participants’ skills and needs, promoting a robust cybersecurity competency throughout the company.

CROSSCON

The CROSSCON project aims to reinforce IoT security by creating a universally compatible, portable, verified security stack with modular features. It provides a unified security approach and includes a Trusted Execution Environment (TEE) for devices devoid of security features. The project also includes open-source stack specifications and reference implementation.

AI4CYBER

The AI4CYBER project will develop a collection of innovative resilience and autonomous response services that leverage AI models and Big Data, aimed to be encapsulated in cybersecurity tools to ensure a continuum of system protection.

All public research projects

Research partner highlights

Career

Are you a match for our innovative company?

To give you an idea of what we do in our day-to-day business, here are some examples:

We explore and evaluate the latest and greatest gadgets, learning new technologies on the way
We motivate continuous development of internal tools to support our evaluations
We travel to all corners of the world to train engineers and managers on security
We participate in international R&D projects with some great partners to see and create the future
We grow our plants, water our flowers on the terrace and feed our pets in the terrarium
We regularly go and do sport together

If someone would like to join us, the following requirements are an absolute must:

University studies - a systematic approach
Fluent written English; being a good speaker and communicator is even better
Learning quickly and independently
Good algorithmic skills

The following advantages will help you to gain recognition in our interview room:

MSc in computer science, electrical engineering or a closely related field
Research or academic background, post-grad degree
Solid programming skills - the more languages the better; knowledge of assembly and machine code is a definite plus
Experience with multiple programming and operating platforms (especially Linux and embedded systems)
IT security knowledge or at least aptitude
Self-dependent and creative problem solving
Work experience in a similar field and/or independent roles

At SEARCH-LAB, fun already starts at the first meeting - don't hesitate to apply!

Blog

Automate the Automator: Harnessing Generative AI for Robust API Testing Monday, October 30, 2023

Revolutionize API testing by leveraging Generative AI to 'Automate the Automator'

#Scademy

Unlocking AI's Full Potential: The Power of Embedding for Contextual Understanding Thursday, July 20, 2023

Have you heard about embedding? If the answer is 'no', then this post is for you.

#Scademy

Contact

E-mail

General inquiries

info@search-lab.hu

Sales

sales@search-lab.hu

Research & Development

research@search-lab.hu

Public Relations

pr@search-lab.hu

Careers

jobs@search-lab.hu

Address

Headquarters and Mailing Address

SEARCH-LAB Ltd.
Budafoki út 187-189. Entrance C
Budapest, 1117 Hungary

PGP Public Key

Public key of info@search-lab.hu and signing key of all SEARCH-LAB issued personal PGP keys.

Click here to download

Phone Numbers

Phone

+36-1-205-3098

Fax

+36-1-205-3099

Tax Numbers

Hungarian Tax Number

12796560-2-43

European VAT ID

HU 12796560