Penetration Test
Penetration Test
Application penetration test, code review, reverse engineering, ethical hacking and APT test against cyber threats
Proactively protect your web shop, internet banking platform, mobile app, ICS (SCADA / DCS), IoT device or IT infrastructure via penetration test, code review, reverse engineering or APT test by our certified penetration testers and security researchers.
ISO 27001 Security Audit
ISO 27001 Security Audit
ISO-compliant assessment of your information security landscape
Analyze and benchmark your information security level based on international standards (ISO 27001, ISO 27002, SANS 20, IEC 62443, NERC CIP, etc.) to plan your IT budget for security mitigation measures.
Digital Forensics & Incident Response
Digital Forensics & Incident Response
Fast, professional reaction to cyber attacks and unwanted digital activities plus court-proof investigation
Respond effectively to malware infection, hacker attack, fraud, data theft and other criminal or unwanted digital activities with the support of our certified DFIR experts.

Oneconsult group is your renowned Swiss cyber security services partner since 2003 with offices in Switzerland and Germany and 2000+ completed security projects worldwide. Get expert advice from an owner-managed and vendor-independent consultancy with 40+ highly qualified cyber security experts, including certified ethical hackers / penetration testers (OPST, OPSA, OSCP, OSCE, GXPN), digital forensics specialists (GCFA, GCFE, GREM, GNFA), ISO security auditors (ISO 27001 Lead Auditor, ISO 27005 Risk Manager, ISO 27035 Incident Manager) and dedicated IT security researchers to solve even your most demanding information security challenges. Together we address your external and internal threats such as malware infections, hacker attacks and APT as well as digital fraud and data leakage with core services like penetration tests / ethical hacking, real-life APT tests and ISO 27001 security audits. In case of emergency, Oneconsult’s Digital Forensics & Incident Response (DFIR) team supports you with around-the-clock expert assistance (24 h x 365 days).

Events

30 November & 1 December 2021: heise Workshop "Active Directory as Target: Efficient Protection"

In a two-day workshop named “Active Directory as Target: Efficient Protection” (in German), Frank Ully, CTO Oneconsult Deutschland AG, will present various methods used by cybercriminals to attack the Active Directory (AD), which plays a central role in many organizations. He also shows what options administrators have to protect the AD against such attacks – including the use of tools to identify potential vulnerabilities, the implementation of hardening measures, and other preventive precautions such as logging and monitoring.
[more]

Cyber Security Talks at Electrosuisse Information Conference for Industrial Electricians

At the information conference for industrial electricians, which is organized by Electrosuisse and held at several dates and locations in Switzerland until the end of the year, Yves Kraft, Branch Manager Bern and Senior Penetration Tester & Security Consultant, Tobias Castagna, CTO, and Frédéric Vogel, Information Security Consultant, explain from a cyber security expert’s view what hackers can do in critical infrastructure.
[more]

News & Advisories

Current iX With Last Part of Active Directory Article Series by Oneconsult

In the current issue 11/2021 of iX, Frank Ully, CTO Oneconsult Deutschland AG, completes the series of articles on the topic of Active Directory (AD) security, which was launched last fall. The last part of the series deals with possibilities of actively defending the AD in order to deceive attackers and thus prevent attack attempts at an early stage.
[more]

digicomp Blog Post About the Risks of Unpatched Vulnerabilities

Proxyshell, PrintNightmare, PetitPotam and HiveNightmare currently keep IT administrators on their toes. In a digicomp blog post, Yves Kraft, Branch Manager Bern and Senior Penetration Tester & Security Consultant, takes a closer look at what these terms are all about, what risks they entail and what measures administrators should definitely take.
[more]

Pen Tester's Diary

Draft OWASP Top 10 for 2021 Available

by Lena Reitzle

OWASP has released a draft of the “OWASP Top 10” for 2021. This article provides a brief overview of what has changed compared to the previous version from 2017 and which risks have particularly high priority for web applications according to the 2021 listing.

[read the German article]

How to Measure Information Security

by Lena Reitzle

Is your organisation protected against cyber attacks? You have implemented protective measures, but cannot determine exactly whether they are sufficient and also achieve the desired result, or where there may still be a need?

In this article, you can learn more about what steps can help you assess the state of your information security and what requirements must be met for these steps to result in a conclusive assessment.
[read the German article]

Our customers value our expertise and vast project experience of over

0

Penetration test projects, over 1100 of which OSSTMM-compliant

0

Application penetration test projects of banking solutions, online shops, mobile apps, ICS (SCADA/DCS), IoT devices, ERP and CRM solutions, CMS, VoIP systems, etc.

0

Security auditse.g. according to ISO 27001, ISO 27002, industry specific guidelines (ISO 27015, 27019, 27799, etc.) or SANS Critical Security Controls

Methods and Standards

Our approach is customized to meet our clients’ specific needs as well as based on «best practice». In addition to our own methods, we also rely on industry-proven standards.

Holding

Oneconsult International AG
Schuetzenstrasse 1
8800 Thalwil
Switzerland

+41 43 377 22 22
info@oneconsult.com

Switzerland

Headquarters
Oneconsult AG
Schuetzenstrasse 1
8800 Thalwil
Switzerland

+41 43 377 22 22
info@oneconsult.com

Oneconsult AG
Aarbergergasse 56
3011 Bern
Switzerland

+41 31 327 15 15
info@oneconsult.com

Germany

Oneconsult Deutschland AG
Agnes-Pockels-Bogen 1
80992 Munich
Germany

+49 89 248820 600
info@oneconsult.com