Penetrationtest

We make use of manual and automated methods in order to pentest your infrastructure and products. This includes penetration tests for web and mobile apps as well as internal/external infrastructure tests and even red teaming.

Security Consulting

We offer consulting concerning all matters of IT security. Our »Security Testing Process« which includes 5 methods and goes far beyond classic penetration testing is our reference point for this.

Threat Modeling

It is vital to value IT security early in the designing stage of software development. Hence we offer individualized threat modelings to support you in methodically working out a trustworthy system design.

Workshops

We help to reinforce the security awareness in your enterprise. For that we design and organize online as well as onsite workshops concerning various topics of IT security.

Fuzzing

Fuzzing is a dynamic test method for automatic identification of security vulnerabilities in software.

Hartmut Pohl, CEO — **Prof. Dr. Hartmut Pohl**
Chief Executive Officer

As an experienced security partner, we have been successfully securing your entire IT & OT for the past 20 years. We use the relevant international standards of IT and OT security and go with our 'Security Testing Process' with 5 methods far beyond classic penetration testing to identify the points of attack in your systems: Security vulnerabilities in software, firmware and microcode without them all attacks are unsuccessful. Of course, we are also available for you at any time in case of an emergency and support you in restarting your IT in a timely manner – including forensic investigations.

What our clients say

SSV Software Systems GmbH

»We had our IGW / 922 VPN remote access gateway router tested by the IT security experts of softScheck, using both penetration testing and the fuzzing of specific network interfaces. We would like to thank softScheck for their excellent work and will continue to rely on them in the future.«

Klaus-Dieter Walter
CEO

InterComponentWare AG

»The experienced consultants of softScheck have given us valuable impulses for the architecture and design of our Java applications by implementing a threat modeling as well as their practical implementation within the framework of our Secure SDLC.«

Volker Kossack
Manager Software Engineering

Hannover Re

»The customer-oriented consultants of softScheck GmbH successfully supported us during the threat modeling of a Java EE application.«

Stefan Krecher
Software Engineer, IT-Business Solutions

All references

Latest Publications

Monitorable and traceable – The insecurity of Bitcoin

Prof. Dr. Hartmut Pohl

Recommendation for action: Serious security vulnerabilities in the Exchange server endanger your IT operations

Prof. Dr. Hartmut Pohl

The most important IT security basics for cryptography

Wilfried Kirsch, Prof. Dr. Hartmut Pohl

The 10 most common security vulnerabilities in medical devices — Security Testing Medical Devices (Software and Hardware)

Lars Ubbenhorst, Prof. Dr. Hartmut Pohl

All Publications

Latest Blog Post

Attacking civilian UAVs

May 15, 2023

Drones are becoming increasingly popular, but they are also vulnerable. Hackers can take control of a drone, steal its data, or even crash it. We explored possible attacks and countermeasures against civilian UAVs.

Read Article

All Blog Posts

Clients and partners