About Pentest Factory GmbH
Pentest Factory GmbH is a specialized consulting company in the field of penetration testing and security analysis. The company supports customers ranging from SMEs to large corporations. Pentest Factory GmbH is part of the tacticx GmbH group of companies. The sister company tacticx Consulting GmbH is one of the leading consulting companies in the field of data protection and information security. It has been supporting customers throughout Europe for more than 20 years. The entire group of companies is also ISO-27001 certified.
All Pentest Factory tests are carried out exclusively by our own employees, who have the OSCP qualification as a minimum requirement.
All Pentest Factory tests are carried out exclusively by our own employees, who have the OSCP qualification as a minimum requirement.
What Differentiates Them From Competitors?
Pentesting is a very sensitive and demanding topic. We are aware of the relevance of our work and the critical processes involved. Transparency is therefore an important factor for our company. We openly communicate the services we provide and the associated costs. An online web configurator on our website enables an initial price indication for the desired pentest at any time. We also focus on the qualification factor. We work exclusively with our own permanent employees. All our pentesters are at least OSCP-certified, and many also hold other recognized certificates such as OSEP, OSWP and CRTP. Furthermore, we only offer services in which we have proven comprehensive expertise. The company is also ISO 27001 certified.
Top Capabilities
Audits & Security Certification Services
Assessment of status quo, development of recommendations for action and support for implementation of audit requirements (e.g. ISO27001, IEC 62443, or similar). This can include the preparation of the actual certification process.
Awareness Training / Phishing Tests
Training and testing the employee's awareness against cyber attacks.
Breach & Attack Simulation (BAS)
Breach and Attack Simulation (BAS) Tools automate security testing for threat vectors, enhancing understanding of vulnerabilities. While BAS complements red teaming and penetration testing, it validates security posture by simulating attacks, aiding risk prioritization.
Critical Infrastructure
Consulting for critical infrastructure (KRITIS) entails advising organizations on meeting specialized regulatory requirements to protect essential systems and assets.
Offensive Security (e.g. Penetration Testing)
Ethical hacking to identify weaknesses in the IT landscape of a company, e.g. with penetration tests.
Top Industries
Automotive & Supplier Industry
Defence & Aerospace
Finances & Banking
Healthcare
Public Authorities
Provider Content
Performing penetration tests and technical security analyses
Deutsche Post Adress GmbH & Co. KG
Provision of the following services:
- Penetration tests of web applications (Grey- and Black-Box)
- Penetration test of API interfaces (Grey-Box)
Penetration tests in the healthcare sector
ITSCare - IT-Services für den Gesundheitsmarkt GbR
Provision of the following services:
- Penetration tests at application and network level
- Performance of technical security analyses
- Password audits
- Support in conducting attack simulations
Penetration test of a whistleblower system
lawcode GmbH
Conducting a penetration test (Grey-Box) of the whistleblower system "Hintbox" including a re-test.
Security analysis of a software
LogiSoft GmbH & Co. KG
Provision of the following services:
- Penetration test (Grey-Box)
- Workshop on secure development & maturity assessment (OpenSAMM)
- Workshop on remediating identified vulnerabilities
Penetration test of the internal IT infrastructure
Stadtentwässerung Braunschweig GmbH
Provision of the following services:
- Penetration test of internal IT infrastructure components (firewalls, mail servers, web servers, etc.)
- Security analysis (black-box) of Network Access Contro...
All Capabilities
Protect
Detect
Provider Contact
Social Media
