Oneconsult group is your renowned Swiss cyber security services partner since 2003 with offices in Switzerland and Germany and 1500+ completed security projects worldwide. Get expert advice from an owner-managed and vendor-independent consultancy with 40+ highly qualified cyber security experts, including certified penetration testers (OPST, OPSA, OSCP, OSCE, GXPN), digital forensics specialists (GCFA, GCFE, GREM), ISO security auditors (ISO 27001 Lead Auditor, ISO 27005 Risk Manager) and dedicated IT security researchers to solve even your most demanding information security challenges. Together we address your external and internal threats such as malware infections, hacker attacks and APT as well as digital fraud and data leakage with core services like penetration tests / ethical hacking, real-life APT tests and ISO 27001 security audits. In case of emergency, Oneconsult’s incident response & IT forensics team supports you with around-the-clock expert assistance (24 h x 365 days).
«Bypass all the things – effective application whitelisting»
Speech by Branch Manager Bern and Senior Penetration Tester Yves Kraft on Hacking Day 2018 at Digicomp Zurich was recorded and will be published in Oeconsult’s youtube channel
Data protection – top topic in many board meetings!
Data protection and data security – the topics are not only since GDPR in every mouth. Digitalization and technical developments require a new understanding of data handling. [more information about the event in German]
OSSTMM – or in words – Open Source Security Testing Methodology Manual
Your advantages when using a de-facto standard for IT security assessments: OSSTMM trainer Yves Kraft’s (Oneconsult Bern) presentation on this topic
Oneconsult is a cyber security consulting company. In the last months questions have repeatedly been asked in meetings and telephone conversations about the consequences of the General Data Protection Regulation (GDPR), which applies on May 25, 2018. Is this a report like many others that deal with fear?
No. If you read on here, you’ll find just some questions of our interlocutors and matching answers, that the Oneconsult team can provide at the moment (as of March 2018). [read the German article]
by Marco Wohler
The danger from domain administrator accounts is often underestimated. This article describes how attackers can compromise an entire domain. In general, authorizations are distributed too loosely and (partly existing) security mechanisms are not used. [read the German article]
by Frank Ully
This is the sixth and final instalment in a multi-part series about Windows PowerShell and how attackers abuse it, how incident responders can detect these attacks – and how IT staff can prevent them in the first place. This article describes which measures IT security managers can implement to protect their organizations against PowerShell attacks. [read the German article]
Our customers value our expertise and vast project experience of over
Application penetration test projects of banking solutions, online shops, mobile apps, ICS (SCADA/DCS), IoT devices, ERP and CRM solutions, CMS, VoIP systems, etc.
Security audits, e.g. according to ISO 27001, ISO 27002, industry specific guidelines (ISO 27015, 27019, 27799, etc.) or SANS Critical Security Controls
Methods and Standards
Our approach is customized to meet our clients’ specific needs as well as based on «best practice». In addition to our own methods, we also rely on industry-proven standards.
Oneconsult International AG
Tel +41 43 377 22 66
Fax +41 43 377 22 77
Oneconsult Deutschland GmbH
Tel +49 89 248820 600
Fax +49 89 248820 677