Who runs this
Senior operators only. No junior analysts, no outsourced subcontractors, no playbook-driven delivery. Every engagement is scoped, executed, and delivered by the same people who built the tooling underneath it. If you want a team of twenty, we're the wrong call. If you want the right two or three people for a specific problem, keep reading.
What we stand behind
We're affiliated with the Observatory for Digital Infrastructure & Network Transparency (ODINT), a 501(c)(3) nonprofit focused on open-source intelligence research against foreign government infrastructure and credential exposure ecosystems. ODINT's research underpins many of the data products Net Works sells commercially. Keeping that research nonprofit and transparent is how we stay trusted.
Proceeds from Net Works commercial work fund ODINT research. This isn't marketing. It's the operating model.
Published research
Our operators publish on Substack, Medium, and LinkedIn under the topics below. Linking to specific articles on this page would date them faster than we'd like; if you want the current list, reach out.
- Country-specific OSINT methodology (Venezuela, Iran, Russia, China)
- Credential exposure ecosystems across 3,000+ domains and 70 countries
- Infrastructure-as-adversary: mapping foreign government network topology
- Space domain awareness: TLE localization, commercial satellite tracking
- Defensive architecture for self-hosted, tunnel-fronted services
Conference & CFP history
Active CFP submissions across DEFCON, BSides, RSA, and regional security conferences. We speak when the talk would say something a vendor session can't. Private roster available on request.
Hardening & self-standards
We hold Net Works' own infrastructure to the same standard we hold clients'. The responsible disclosure policy covers how to report vulnerabilities in this site, our tools, or our APIs. The security.txt file at the standard RFC 9116 path is the first thing you should read if you're a researcher. Full hardening audit log:
- 2026-04-12 -- Full DEVOPS-SECURITY-CHECKLIST pass: column whitelisting, CSP, HSTS preload, global + auth + expensive rate limiting, secret rotation, static-root isolation. Verified via live probes.
Hiring
We don't actively hire. We occasionally bring on senior operators we've already worked with on engagements where they proved themselves. If you're one of those people, you already know how to reach us. If you're not, start here.