Our Projects

Explore our portfolio of successful projects across various domains of cybersecurity and IT consulting.

Book a Free Consultation

Long Term Automation, Hardening and Security Support

Industry

business_center

eClear

location_on

Germany

This 2.5-year engagement involved ongoing IT and cybersecurity consulting services, including a comprehensive security audit, preparation for security compliance for BaFin regulation,
and server and infrastructure hardening. Our support also encompassed DevOps/Linux administration and Ansible automation, leading to a significant improvement in system uptime and a streamlined IT operations. By implementing these measures, we helped the client achieve compliance with BaFin, reduce the risk of cyberattacks, and enhance overall security posture.

code

Technologies

Ansible, Graylog, Vulnerability Scanners, Zabixx, AWS, Kubernetes, OTRS

Infrastructure Hardening, Security and Incident Response

Fintech

business_center

Crypto-Kaizen

location_on

USA

This project involved ongoing DevOps, Linux/SysAdmin,
and cybersecurity support, including successful investigation
of a complex AWS resource hijacking incident. We identified the root cause of the incident and implemented mitigation strategies to prevent future occurrences, minimizing data loss and restoring critical services. We also implemented security best practices such as least privilege access controls and regular security audits, enhancing the security posture of the customer's AWS infrastructure. These efforts resulted in improved operational efficiency, reduced downtime, and provided the client with the knowledge and tools to proactively address security threats.

code

Technologies

OpenVPN, AWS,, Ansible

Inftrastructure Deployment and Hardening Automation

Cloud Services and Hosting

business_center

ecomDATA

location_on

Austria

Automated server provisioning using Ansible, resulting in significant time and cost savings through streamlined deployments and reduced manual effort. Implemented robust security measures during infrastructure hardening, minimizing vulnerabilities and enhancing overall system stability.

code

Technologies

Ansible AWX, WHMCS, Minicube K8s

Automation and Inftrastructue Deployment Platform Development

business_center

Siranga GmbH

location_on

Switzerland

Cloud Services and Hosting

The platform is a Django application from which customers can automatically set up and manage their own private cloud, the application is integrated with a payment gateway (Stripe) and Ansible AWX which is used as a core system for automation.
Siranga uses Kopano as its core technology for email and collaboration management, which allows its users to keep track of their e-mails and calendars and to organize themselves with tasks. Later, we also added a secure videoconferencing solution.
The SIRANGA project started in March 2020 and since then we designed and implemented the SIRANGA web application with a fully automated solution for cloud provisioning and management of operating system and applications, deployment of Open-VPN, firewall setup, and configuration using Ansible.
We deployed all of the key components of the solution such as firewall, load balancer, web server, and database in high availability.

code

Technologies

Ansible AWX, Django, Stripe

DevOps Engineering

Information Technology & Cybersecurity

business_center

ecomDATA

location_on

Hungary

NXLog log management development and testing. Integrating NXLog with different SIEM systems and NXLog documentation.

code

Technologies

NXLog

Log Management Proof Of Value

Internet Protection

business_center

Techloq

location_on

code

Technologies

Graylog

Implementation of Centralized Infrastructure Monitoring System

business_center

Vivanet

location_on

Switzerland

Cloud Services and Hosting

Design and implementation of an SNMP-based centralized infrastructure monitoring system using Centreon.

code

Technologies

Centreon

Security Systems Engineering

Information Technology & Services

business_center

Axenta a.s.

location_on

Czech Republic

Design, implementation, and maintenance of Security Operations Center (SOC). General Linux & Network administration related to log management and monitoring.

code

Technologies

Centreon, Syslog-ng, Syslog-ng Store Box, Graylog, OSSEC

Investigative Analysis and Legal Proof collection

Misc

business_center

AFMACO, Misc,

location_on

Saudi Arabia

This project involved a deep analysis and investigation of a sophisticated phishing attack and bank fraud. We analyzed a large volume of data, including email logs, server logs, and network traffic logs, to create a detailed and accurate timeline of the attack, pinpointing key events and the timeline of compromise.

Our analysis included an in-depth examination of the social engineering techniques employed by the attackers. We identified the root cause of the attack and recommended security measures to prevent future similar incidents.

This investigation provided critical evidence to support the legal case against the attackers and helped the client understand the attack methodology and identify areas for improvement in their security posture, ultimately reducing the financial and reputational impact of the attack.

code

Technologies

Suricata, Bro, PCAP Analysis, Intrusion Detection

Investigative Analysis of Network PCAPs

Information Technology & Services

business_center

AgileOT

location_on

USA

Network PCAP analysis conducted to identify suspicious and unauthorized network activity. Leveraged advanced forensics techniques to analyze network traffic data, identify anomalies, and pinpoint the source of security incidents. This analysis provided critical insights into network behavior, enabling the identification of potential threats, such as malware infections, data exfiltration attempts, and unauthorized access. The findings of this analysis were used to enhance network security measures and improve overall security posture.

code

Technologies

Suricata, Bro, PCAP Analysis

Log Management Proof Of Value

Information Technology & Services

business_center

Neuswyft

location_on

Canada

This software development project combined log management, SIEM, and a custom Python Django-based application to create a centralized log collection and analysis platform offered as a SaaS solution. The core log management system utilized Graylog and the ELK stack, with a custom-built user interface for easy configuration, monitoring, and analysis of log data. This project enabled the customer to gain valuable insights from log data, improve security posture, and reduce the time and effort required for log management and analysis.

code

Technologies

Graylog, ELK Stack, Django

Long Term Support for Log Management and Infrastructure Monitoring

Information Technology & Cybersecurity

business_center

Cinoware

location_on

Austria

Long term support of Graylog and Zabbix and technical training for the internal team.

code

Technologies

Graylog, Zabbix

Log Management & Intrusion Detection

Information Technology & Services

business_center

Value-Ad

location_on

Austrialia

Implementation of best-practice intrusion detection rules and centralized log management installation and configuration using Graylog, OSSEC, and Syslog-ng as the log shipper. Ansible used for the deployment automation.

code

Technologies

Graylog, OSSEC, Syslog-ng

SOAR Integrations and Playbooks Development

Information Technology & Cybersecurity

business_center

Siemplify

location_on

Israel

This multi-year software development project involved the creation of a suite of several dozens of API-based integrations for the Siemplify SOAR platform. These integrations significantly enhanced the functionality and value proposition of the Siemplify platform by enabling seamless orchestration and automation of security workflows across various security tools and technologies, including SIEMs, EDR solutions, and cloud security platforms.

The project involved overcoming technical challenges related to API compatibility, data mapping, and ensuring data integrity and security across different platforms. These integrations continue to be used and maintained by Google Cloud, providing ongoing value to a large number of customers. This project contributed significantly to the success of the Siemplify platform and its subsequent acquisition by Google.

code

Technologies

Siemplify, SOAR

Centralized Log Management Platform Development

IT & Cybersecurity Consulting

business_center

Severin Simko IT Services

location_on

Slovakia

SimkoLab is a cybersecurity platform that allows potential clients to experience firsthand the capabilities of our open-source-based security solutions offered at Severin Simko IT Services. SimkoLab showcases a range of open-source technologies, including intrusion detection systems (IDS), security information and event management (SIEM) solutions, and vulnerability scanners.

Clients can interact with live demonstrations, conduct proof-of-concept tests, and gain hands-on experience with our security solutions. SimkoLab provides a unique opportunity to evaluate our cybersecurity offerings and gain valuable insights into their own security posture, ultimately helping them select the best solutions to meet their specific needs.

code

Technologies

Log Management, Intrusion Detection, Monitoring, Automation

Log Management Design and Implementation

Computer Software

business_center

Dial-Once

location_on

France

code

Technologies

Graylog

Intrusion Detection & Integration

business_center

Paisaease

location_on

India

Misc

Intrusion detection implementation and configuration using OSSEC and the integration with Graylog. Implementation of best-practice detection methods and alerting.

code

Technologies

Graylog, OSSEC, Syslog-ng

Bison Cybersecurity, white blue colors.jpg

Our Projects

Long Term Automation, Hardening and Security Support

Infrastructure Hardening, Security and Incident Response

Inftrastructure Deployment and Hardening Automation

Automation and Inftrastructue Deployment Platform Development

DevOps Engineering

Log Management Proof Of Value

Implementation of Centralized Infrastructure Monitoring System

Security Systems Engineering

Ready to Unleash The Power of BisonCyber?