レイ・イージス・ジャパン List of Products and Services

This document explains the challenges of cybersecurity in the domestic manufacturing industry, including the persistence of legacy systems, supply chain risks, and a shortage of skilled personnel, as well as solutions utilizing our services. 【Contents (excerpt)】 ◎ What are the cybersecurity challenges in the manufacturing industry? 　1. Persistence of legacy systems (high likelihood of vulnerabilities) 　2. Integration of OT and IT systems (easier for attackers to infiltrate) 　3. Supply chain risks (potential for damage to the entire chain) 　4. Shortage of skilled personnel (lack of cybersecurity professionals hinders implementation of measures) ◎ Approaches and proposals for solving these challenges ◎ Introduction of our services *For more details, please refer to the document available for "PDF download." Feel free to contact us with any inquiries.

• Other security

This document introduces the security assessment services provided by Ray Aegis Japan, Inc. It includes topics such as "The Necessity of Security Assessments," "Causes for the Devaluation of Security Assessments," and "Measures to Improve Misunderstandings about Security Assessments." By reviewing this document, you will gain an understanding of the challenges of security assessments in companies, the actual state of security assessments, and the specifications and pricing of security assessment services. Please feel free to download and take a look. [Contents (Excerpt)] ■ The Necessity of Security Assessments ■ Causes for the Devaluation of Security Assessments ■ Measures to Improve Misunderstandings about Security Assessments ■ Common Types and Tools for Security Assessments ■ Introduction to Our Security Assessment Services *For more details, please refer to the PDF document or feel free to contact us.

• Other security

At Ray Aegis Japan, we utilize our proprietary AI tools to provide vulnerability assessments conducted by over 320 highly skilled security engineers worldwide. As attacks exploiting weaknesses in the supply chain of the manufacturing industry are on the rise, what are the comprehensive security measures against cyberattacks? We are offering materials that explain the key points of necessary security measures! What are the world-class security measures? We explain them in an easy-to-understand manner! [Excerpt of the content] - Challenges of cybersecurity in the manufacturing industry - 59% have experienced security incidents? - Supply chain risks - Approaches to solving challenges *For more details, please download the PDF or contact us.

• others

Our "penetration testing" complies with PCI DSS v4.0 requirements. We have over 320 qualified security engineers. In addition to PCI DSS requirements, we have a track record of penetration testing and red team operations for financial institutions and government agencies in various countries. Moreover, in addition to commonly used tools, we utilize our proprietary AI tools to detect advanced attacks such as business logic flaws, DoS, and zero-day attacks. 【Features】 ■ Compliance with PCI DSS v4.0 requirements ■ Over 320 qualified personnel and more than 1,600 high-quality assessments annually ■ Re-assessment available as many times as needed with one year of after-support ■ Clear service plans *For more details, please refer to the PDF document or feel free to contact us.

• Other security

Our "Fast Penetration Test" utilizes not only commonly used tools but also our proprietary AI tools. It detects advanced attacks such as business logic flaws, DoS, and zero-day attacks. We also attempt attacks that mimic actual hacker techniques and combine multiple vulnerabilities. Thanks to this advanced technology and unique tools, we can conduct tests in a short period and discover vulnerabilities that are generally difficult to find. 【Pricing Features】 ■ Course-based pricing - A tiered pricing structure is set to ensure lower costs for smaller system sizes. ■ Fixed pricing - Regardless of the number of pages or requests, we offer a fixed pricing structure per "IP address/FQDN/application" tailored to customer needs. *For more details, please refer to the PDF document or feel free to contact us.

• Other security

Our "Dark Web Exploration Service" is a one-stop service that quickly detects any potential information leaks regarding our customers and strengthens cybersecurity. Our company, which boasts over 320 white hat hackers, one of the largest groups in the world, conducts investigations on the dark web based on specified keywords to identify the potential risks to our customers' information. Through our customized reports, you can confirm the risks related to your information. [Service Coverage] ■ Information leaks and information breaches *For more details, please refer to the PDF document or feel free to contact us.

• Other services

We would like to introduce our "Ray-SOC Service." We monitor logs from network devices and security equipment, focusing on firewalls and VPN connection devices, in real-time or at regular intervals. This allows for the early detection and response to abnormal communications and trends, such as attempts of intrusion from external sources. Additionally, our standard plan for this service is available from 108,000 yen per month, and we can customize the service content to match your budget and security policies. 【Monitoring Targets (Partial)】 ■ Network Devices ■ Authentication Servers ■ Antivirus ■ Firewalls *For more details, please refer to the PDF materials or feel free to contact us.

• Other services
• Firewall and intrusion prevention

Cyber attacks targeting web systems are numerous, and security measures are essential even in the manufacturing industry. The cyber attack countermeasure tool 'Ray-SOC WAF' is a multi-tenant cloud WAF service that serves as a countermeasure against cyber attacks that can lead to factory shutdowns. It features advanced defense capabilities powered by an AI engine, and the Ray Aegis Japan SOC team constantly monitors it, making it a cyber attack countermeasure tool that requires minimal management effort. Additionally, you can check the trends of attacks and defense status through monthly reports that summarize defense statistics, such as the number of blocked incidents, trends by type of attack, originating IP addresses, and trends by country. We are also offering a document summarizing the key points of necessary security measures, which has over 3,000 achievements primarily with overseas financial and government agencies! 【Features】 ■ By allowing multiple users to share a single WAF server, it protects the web server while maintaining advanced defense capabilities powered by the AI engine. ■ Logs detected by the WAF are monitored at Ray Aegis Japan's Ray-SOC Center. * For more details, please refer to the PDF document or feel free to contact us.

• Other security

"CloudCoffer SandSphere" is a service developed by CloudCoffer Inc. for detecting malware. Through its proprietary AI engine, it performs "surface analysis," "static analysis," "backdoor analysis," and "dynamic analysis" to detect unknown malware and malware that has previously evaded detection in Sandboxes. Additionally, based on customer requests, it offers both one-time services and flexible options for installation and usage over a specified period. 【Features】 ■ Conducts inspections through a unique four-phase process to discover not only known malware but also variants and new types. ■ Offers flexibility in choosing between one-time services and installation/usage for a specified period based on customer needs. ■ Eliminates the need to account for costly AI Sandboxes as assets. *For more details, please refer to the PDF document or feel free to contact us.

• Other security

We would like to introduce our "AI Remote Vulnerability Diagnosis." Using a vulnerability scanning tool equipped with an AI engine developed independently by Ray Aegis, we conduct automated tool diagnostics. Following this, experienced diagnosticians manually assess items that cannot be covered by the automated tool diagnostics in detail. The diagnosis is priced per FQDN, allowing for fast and cost-effective use even for web applications with many screens and features, such as media distribution services. 【Other Services】 ■ Platform Diagnosis ■ AI Quick Tool Diagnosis ■ Fast Penetration Test ■ Penetration Test *For more details, please refer to the PDF document or feel free to contact us.

• Other network tools

Our company provides innovative approaches in the field of cybersecurity. Utilizing new AI technologies and specialized tools, we focus on enhancing digital security for businesses and protecting our clients from cyber attacks. We are constantly working on technological innovation aimed at data protection and ensuring business continuity. Additionally, we propose custom-made security solutions and implement comprehensive security measures tailored to the unique needs of each business. [Business Activities] ■ Web Application Vulnerability Assessment ■ Penetration Testing ■ TLPT ■ DDoS Exercises, etc. *For more details, please refer to the PDF document or feel free to contact us.

• Firewall and intrusion prevention

This is a higher-level service that detects malware that traditional signature matching techniques could not capture, distinguishing it from conventional antivirus and sandbox solutions, either on a file-by-file basis or by system. This detection service is carried out through the following methods: 1) Explicitly moving files to the detection server. 2) Moving all files from the target system (or all files within a specific folder) to the detection server to check for the presence of unauthorized files. 3) After performing step 2, preparing scripts or agents on the target system to regularly (e.g., once a day) move new files to the detection server to verify the integrity of the files.

• others

We utilize RayAegis's unique AI tools to provide vulnerability assessments conducted by over 250 advanced security engineers worldwide. With our AI × Security approach practiced since our founding, we can offer comprehensive diagnostic services that maintain quality in a short period, even for the increasing number of systems year by year. Please feel free to contact us if you have any requests. 【Features】 ■ A package pricing system based on FQDN that becomes more cost-effective as the environment scales ■ No need for preliminary narrowing down of diagnostic targets when making a request ■ The information we need to gather in advance is very simple ■ Short duration and high quality *For more details, please download the PDF or contact us.

• others

The "Mobile App Diagnosis Service" is a diagnostic service that performs rapid diagnosis and analysis on frequently updated mobile applications without affecting the server side, using a uniquely developed AI tool. By utilizing this service, you can conduct a security diagnosis of the mobile application itself in as little as one day. 【Features】 ■ Supports mobile application packages for iOS and Android ■ Comprehensive diagnosis including the server side through local diagnosis of the mobile app alone or API diagnosis options ■ Complies with OWASP Mobile Security Testing Guide, OSSTMM, and NIST SP800-115/163 - Covers the entire range of OWASP Top 10 Mobile Risks along with the API diagnosis option ■ Achieves rapid and short-term diagnosis in as little as one day using RayAegis's uniquely developed AI tool, among other features *For more details, please download the PDF or contact us.

• others

Our company has been providing security diagnosis services that realize AI × security since our founding. As a packaged flat-rate service, it is cost-effective and eliminates the need for the hassle of narrowing down the diagnosis targets in advance. We also offer robust after-support within the package, including re-diagnosis of discovered items. Please feel free to contact us if you have any requests. 【Our Strengths】 ■ Dedicated white hat hackers ■ Efficiency and advancement through AI ■ User-friendly services ■ Extensive track record of provision *For more details, please download the PDF or contact us.

• others