NGSSoftware

Intelligent Solutions for an Evolving World

In the fast–moving world of software security it pays to have allies you can trust. Government, business and software vendors all turn to the global expertise of NGSSoftware for the protection they need. You can rely on us too...

Read more on why you should choose NGSSoftware.

NGSSQuirreL

The world's most comprehensive database security assessment scanner.
The best tool for database vulnerability assessment, compliance and verification.
Accurate, fast and intuitive.

NGSSQuirreL is the best tool available for verifying the security posture of your organization's database infrastructure, performing accurate vulnerabilty assessments and policy verification. NGSSQuirreL is the trusted tool of choice for SOX, PCI and HIPAA compliance More about NGSSQuirreL >

"Overall I found NGSSQuirreL's power, flexibility, and speed impressive... I highly recommend these products for auditing production and development SQL Server instances on a regular basis." – Michael Coles, SQLServerCentral.com

Download NGSSQuirreL trial »

Typhon III

Combining world class research & consultancy experience.
Incorporating over thirty distinct application modules.
Quickly and accurately assess enterprise environments.

NGSSoftware's Typhon III vulnerability scanner transforms the process of discovering and fixing infrastructure... More about Typhon III >

"This is the best general vulnerability scanner I've found with respect to dealing with security issues for database servers... I was impressed with how rapidly it was able to perform the scans and how accurate the reports were... The documentation is awesome, especially when it discovers a vulnerability." – Brian Kelley, SQLServerCentral.com

Download Typhon III trial »

Featured Client Testimonial

Microsoft logo

"As part of Microsoft's Trustworthy Computing commitment, the Secure Windows Initiative Team has the responsibility for ensuring all Microsoft products are as secure for our customers as possible. As part of this effort, we seek out the world's leading vulnerability researchers to help us with our largest, most complex engagements. The NGSSoftware team is a great fit, already being trusted advisors to governments and other global corporations."

"Over the last 3 years, our teams have collaborated on various product engagements requiring 3rd party involvement or leveraging NGSSoftware's unique research strengths. Our teamwork has resulted in more secure products reaching our customers and NGSSoftware has proven to be an outstanding, reliable, capable and professional security consulting team."

Queen's Award 2007

NGSSoftware are delighted to announce that we are winners of the Queen's Award for Enterprise: International Trade 2007.

Red Herring 100

NGSSoftware named as winners in the Red Herring 100.

Security Advisories

Critical Vulnerability in Oracle Application Server

Critical Vulnerability in SNMPc

High Risk Vulnerability in Real Player (ID3 tags)

Stay on top of all the latest software security issues. Subscribe to our advisories RSS feed today.

Latest News

Blocking Traffic by Country on Production Networks

Guide to VOIP Security

NGSSoftware South-East England Regional Winners at 2008 International Trade Awards

South London Business Awards 2008

Research Insights

Our white papers define the industry.

Black Hat USA 2007

VoIP Security: Methodology and Results (Barrie Dempster); Hacking the Extensible Firmware Interface (John Heasman); Attacking the Windows Kernel (Jonathan Lindsay)

DNS Pinning and Web Proxies

Dafydd Stuttard's latest paper takes a look at how to prevent DNS-based attacks against web proxies.

A Simple and Practical Approach to Input Validation

David Soldera outlines why converting user input to XML could reduce security issues arising from poor input validation.

Oracle Forensics [UPDATED]

David Litchfield's new series of papers on performing a forensic analysis of a compromised Oracle Database Server. [Part1, Part2, Part3, Part4, Part5, Part6]