Pentesting Providers DACH Region

Penetration Testing in the DACH Region

Penetration Testing (pentesting) is the systematic examination of IT systems for vulnerabilities through simulated attacks. Unlike Red Teaming, pentesting focuses on a clearly defined scope and aims to identify as many vulnerabilities as possible within a specific area.

Common Pentesting Areas

• Web Application Pentesting – Testing web applications for OWASP Top 10 and beyond
• Infrastructure Pentesting – Network scans, service exploitation, privilege escalation
• Active Directory Pentesting – Attacks on AD environments, Kerberoasting, AS-REP Roasting, DCSync
• Cloud Security Assessments – AWS, Azure, GCP – configuration review and exploitation
• Mobile Application Pentesting – iOS and Android app security reviews
• API Pentesting – REST, GraphQL, SOAP – authentication, authorization, injection

Pentesting Providers in the DACH Region

Austria

• SEC Consult – International IT security consultancy, headquartered in Vienna
• Hackner Security Intelligence – Security assessments, founded 2010
• Certitude Consulting – Cyber risk management, Vienna
• Adversary GmbH – Penetration testing and IT security consulting, Vienna
• RootSys GmbH – Penetration testing, code audits and security consulting, Vienna
• TÜV TRUST IT – TÜV AUSTRIA – IT security services of the TÜV AUSTRIA Group
• A1 Digital International GmbH – Cyber security and penetration testing
• CERTAINITY GmbH – Infrastructure and web/mobile app pentesting
• Bee IT Security Consulting GmbH – Internal infrastructure pentesting and security consulting, Schweinern
• SBA Research gGmbH – IT security research center, Vienna
• Strong-IT GmbH – Ethical hacking and penetration testing, Innsbruck

Germany

• SySS GmbH – One of Germany's oldest pentest providers, Tübingen
• RedTeam Pentesting – Pentesting from Aachen
• NSIDE ATTACK LOGIC – Red Teaming and pentesting, Munich
• Cure53 – Web app & API pentesting and cloud security, Berlin
• DSecured – Web/API pentesting and Red Teaming, Berlin
• Lutra Security GmbH – Red Teaming and web application security, Munich
• secuvera GmbH – Active Directory, infrastructure and web pentesting, Gäufelden
• AWARE7 GmbH – Information security consulting and pentesting, Gelsenkirchen
• Exploit Labs GmbH – Red Teaming and security training, Eschborn
• SCHUTZWERK GmbH – Penetration testing and Red Teaming, Ulm
• Pentagrid GmbH – Application and infrastructure pentesting, Berlin
• CERTAINITY GmbH – Infrastructure and web/mobile app pentesting, Neu-Isenburg
• Trovent Security GmbH – Web applications and AD infrastructure, Bochum
• Laokoon SecurITy GmbH – Pentesting and Red Teaming, Bonn
• KALWEIT ITS GmbH – Insider threat testing and Red Teaming, Hamburg

Switzerland

• Compass Security – Penetration testing, Rapperswil-Jona
• Oneconsult – Cybersecurity services, Zurich
• Redguard – Penetration testing, Bern
• scip AG – Security research and penetration testing, Zurich
• modzero AG – Security research and application security, Zurich
• InfoGuard AG – Cyber security and penetration testing, Baar
• CRYPTRON Security GmbH – Penetration testing and Red/Purple Teaming
• Red Team Partners – Red Teaming and pentesting, CREST-certified
• Terreactive AG – Managed security and penetration testing, Aarau

Country-Specific Information

• Pentesting Austria – Pentesting providers in Austria
• Pentesting Germany – Pentesting providers in Germany
• Pentesting Switzerland – Pentesting providers in Switzerland

→ All Red Teaming Providers in the DACH Region
→ All Physical Security Providers in the DACH Region