We care about
your security.
Nethemba is a leading Slovak IT security firm especialized in web security, penetration testing, and RFID security audits. Since 2007, we’ve been securing businesses with cutting-edge research and expertise, trusted by companies worldwide.

We care about
your security.
Nethemba is a leading Slovak IT security firm especialized in web security, penetration testing, and RFID security audits. Since 2007, we’ve been securing businesses with cutting-edge research and expertise, trusted by companies worldwide.

Our Services

Application Security

Network and System Security

Security Services

Security Solutions
BLOG
Summer news: Hacker discount of 13.37% on all our services + great educational hacker videos + see you at WHY2025!
For our loyal and new customers, we are offering a 13.37% discount on all penetration tests and security audits, provided the binding order is received by August 31, 2025, and the work commences before this date. If you are planning penetration testing or security audits this year, consider rescheduling them for the summer. Not only […]
Read MoreHow to maximize anonymity when accessing the Internet on mobile
The problem of mobile anonymity Dystopia is in full swing in Europe, and achieving true anonymity from mobile devices is a big problem. The picture below shows that most countries require mandatory registration of SIM cards on the national ID or passport. This means that all mobile operators in a given state (and, of course, […]
Read MoreDiscovery of CVE-2022-24833
When on a security audit for a client it was discovered that a key component – the open-source private paste service PrivateBin contained a previously undocumented flaw. Cross-site-scripting is nothing new. I actually feel there must be prehistoric cave paintings and markings somewhere in the world containing some variation of <script>alert(1)</script>. Although XSS payloads embedded […]
Read MoreTwo systems here rated Easy which have many similarities, but are there any differences...?
shell-x86 vs shell-86 really screwed me over here... Idiot User Error

Security researchers found a weakness in OpenAI Connectors, which let you hook up ChatGPT to other services, that allowed them to extract data from a Google Drive without any user interaction

A little OSINT gains us access to some shares, but when an instant messaging app and some LDAP come into play will we be able to grab some NTLM hashes and gain admin access?
Complicated and difficult box.
