Oneconsult group is your renowned Swiss cyber security services partner since 2003 with offices in Switzerland and Germany and 1600+ completed security projects worldwide. Get expert advice from an owner-managed and vendor-independent consultancy with 40+ highly qualified cyber security experts, including certified ethical hackers / penetration testers (OPST, OPSA, OSCP, OSCE, GXPN), digital forensics specialists (GCFA, GCFE, GREM, GNFA), ISO security auditors (ISO 27001 Lead Auditor, ISO 27005 Risk Manager, ISO 27035 Incident Manager) and dedicated IT security researchers to solve even your most demanding information security challenges. Together we address your external and internal threats such as malware infections, hacker attacks and APT as well as digital fraud and data leakage with core services like penetration tests / ethical hacking, real-life APT tests and ISO 27001 security audits. In case of emergency, Oneconsult’s Digital Forensics & Incident Response (DFIR) team supports you with around-the-clock expert assistance (24 h x 365 days).
Events
22-Jul-19
15.10.2019 / Web Developer Conference in Hamburg
Presentation with the title”Wie APIs angegriffen werden und wie Entwickler sicher entwickeln können – am Beispiel von Node.js” by Senior Penetration Tester & Security Consultant Frank Ully.
News & Advisories
20-Jun-19
Webinar about Lateral Movement on 2nd of July
Register now for the webinar “A hacker explains: “Lateral movement” on 2 July at 2 pm. Our Senior Penetration Tester and Security Consultant Yves Kraft explains everything about “Lateral Movement”.
05-Jun-19
Article "Attack on contactless cards" in the program "Kassensturz"
Our IT security experts Jan Alsenz & Adrian von Arx have conducted an exciting hacking experiment: Attack on contactless cards. The experiment was broadcasted in the program “Kassensturz”. Click here to see the article: https://www.srf.ch/play/tv/sendung/kassensturz?id=78a6014e-8058-4bdd-88aa-824f846ca6f0 (1:16 min – 9:00 min)
Pen Tester's Diary
13-Aug-19
(In)secure passwords – Part 2: Results of a password quality audit
by Sandro Affentranger
This is the second article on passwords. Recommendations for strong passwords have hardly changed over the years. Only recently it has become clear that the recommendations made so far have created certain patterns that can be exploited by attackers – this has led to a paradigm shift in password policies. This article presents the results of a Password Quality Audit carried out by Oneconsult at an international industrial company. [read the German article]
22-Jul-19
OWASP IoT Top 10 – Part 2
by Jakob Kunzmann
This article deals with the OWASP Top 10 on the Internet of Things, a list of the top ten security risks in the IoT area, published by the Open Web Application Security Project (OWASP).
Read the full german article here: https://www.oneconsult.com/de/owasp-iot-top-10-teil-2/.
Our customers value our expertise and vast project experience of over
Penetration test projects, over 850 of which OSSTMM-compliant
Application penetration test projects of banking solutions, online shops, mobile apps, ICS (SCADA/DCS), IoT devices, ERP and CRM solutions, CMS, VoIP systems, etc.
Security audits, e.g. according to ISO 27001, ISO 27002, industry specific guidelines (ISO 27015, 27019, 27799, etc.) or SANS Critical Security Controls
Methods and Standards
Our approach is customized to meet our clients’ specific needs as well as based on «best practice». In addition to our own methods, we also rely on industry-proven standards.
Holding
Oneconsult International AG
Schuetzenstrasse 1
8800 Thalwil
Switzerland
Tel +41 43 377 22 22
Fax +41 43 377 22 77
info@oneconsult.com
Switzerland
Headquarters
Oneconsult AG
Schuetzenstrasse 1
8800 Thalwil
Switzerland
Tel +41 43 377 22 22
Fax +41 43 377 22 77
info@oneconsult.com
Oneconsult AG
Baerenplatz 7
3011 Bern
Switzerland
Tel +41 31 327 15 15
Fax +41 31 327 15 25
info@oneconsult.com
Germany
Oneconsult Deutschland GmbH
Agnes-Pockels-Bogen 1
80992 Munich
Germany
Tel +49 89 248820 600
Fax +49 89 248820 677
info@oneconsult.com
