About softScheck

Hartmut PohlProf. Dr. Hartmut Pohl

supports you in methodically developing secure software and firmware – based on recognized industry guidelines such as ‘ISO 27034 Application Security’ and the OWASP Software Assurance Maturity Model or Secure Software Development Life Cycle (S-SDLC, Microsoft).

Our core competencies range from Security Requirements Analysis, Threat Modeling, Static Source Code Analysis, classic Penetration Testing and Fuzzing and Security Testing to Compliance Testing.

In addition, we perform certified Security Test services as an audit partner of TÜV Saarland and DEKRA.



Smarter World Produkt des Jahres 2019 Smarter World price for the product of the year goes to .

    Latest Publication

    Latest Publication

    What about Security in DLT, blockchain and components like dApps, smart contracts, wallets, frameworks?

    Download PDF

    Latest Blog post

    Testing the “Netatmo Welcome” Smart Camera – Hardware Hacking

    Netatmo Welcome is a smart camera, which is capable of recognizing faces, streaming recordings into the cloud or alertin...

    Read Article

    What our clients are saying

    "As long as I require penetration testing, I will be a client of softScheck."

    “softScheck’s customer-orientation is characterized by a high sense of responsibility towards the customer. The consultants were personally available to answer questions even after the security tests were completed.”

    Jens Heddrich, Sofort GmbH
    IT-Security Officer

    “The customer-oriented consultants of softScheck GmbH successfully supported us during the threat modeling of a Java EE application.”

    Stefan Krecher, Hannover Re
    Software Engineer, IT-Business Solutions

    “The experienced consultants of softScheck have given us valuable impulses for the architecture and design of our Java applications by implementing a threat modeling as well as their practical implementation within the framework of our Secure SDLC.“

    Volker Kossack, InterComponentWare AG
    Manager Software Engineering

    Security Testing as a Service

    Everybody is talking about attacks on IT systems and trying to recognize them. A completely wrong strategy!
    Actually vulnerabilities are the root of all evil. Attacks are only successful if they can exploit a vulnerability. Therefore:

    Let us improve your security: identifies Zero-Day-Vulnerabilities in every type of software and hardware. We offer „Security Testing as a Service“ in form of a holistic process.

    secures your software, firmware, apps and systems, Networks, Server, Router and Gateways and also Blockchains, Smart Contracts, Wallets, dApps, DLT etc. In IoT/Industrie 4.0, SCADA and in general.


    Vortrag über Security in Medizinprodukten
    ASQF-Net-Week 2020
    Webinar über Hardware Hacking am Beispiel einer Smarten Kamera
    Forum Safety & Security 2020
    Vortrag zum Thema Cloud Security
    All Events

    Customers and Partners

    netcologne logo
    fsp logo
    nrw units
    Allianz für Cyber-Sicherheit
    openlimit logo
    bitkom logo
    Berlin University of Digital Sciences
    softScheck Logo