CyberRey partners with organizations to reduce cyber risk and build lasting digital resilience.
Forestall is an adversary-centric cybersecurity company specialising in Active Directory security, delivering a multi-staged platform that combines proactive vulnerability assessment, attack path detection, and malicious document analysis — giving organisations the visibility and countermeasures needed to detect and close the hidden weaknesses that attackers exploit most.
Rapidly scans the Active Directory environment to detect vulnerabilities, misconfigurations, excessive delegations, and hidden attack paths — producing a detailed, prioritised remediation roadmap that gives security teams a clear, actionable picture of AD risk within minutes rather than weeks.
Maps potential lateral movement routes and privilege escalation paths through the AD environment — identifying the sequences of weaknesses that an attacker could chain together to move from a standard user account to domain dominance, before an adversary does so in reality.
Provides comprehensive visibility into users, groups, group policy objects, delegations, and trust relationships across the AD environment — surfacing the complex interdependencies and permission structures that create risk but are typically invisible to standard administrative tooling.
Tests the resilience of AD defences by simulating realistic attack chains modelled on internal and external threat actor techniques — validating whether existing controls would detect or prevent actual adversary behaviour and identifying gaps before they are exploited in a real incident.
Analyses office documents to detect and extract malicious VBA macros, VBA stomping, DDE objects, RTF exploits, and Exif data — enriched with MalwareBazaar and Mogan threat intelligence integrations and YARA rule scanning to identify document-borne threats at the point of submission.
Delivers hands-on AD security assessments, SIEM assessments, AWS security assessments, penetration testing, and source code auditing — extending the platform's technical depth with specialist expertise that translates product findings into operational security improvements.
Forestall was built by security experts with deep expertise in adversarial tactics — specifically those targeting Active Directory, which remains the most commonly exploited identity infrastructure in enterprise environments. The company takes an adversary-first perspective: rather than building defences based on theoretical best practices, Forestall reverse-engineers real attack techniques and translates them directly into detection, assessment, and prevention capabilities. Its product portfolio includes FSProtect, an Active Directory security assessment and attack path management tool, and Borabay, an office document analysis platform for detecting malicious macros and exploits. Forestall also delivers expert-led services including AD security assessments, adversary simulation, SIEM assessments, and penetration testing — combining product depth with hands-on technical knowledge that is rare among vendors of comparable scale. Forestall's platform approach is designed to expand progressively, adding proactive and reactive countermeasures as the threat landscape evolves.
