Pentest Factory stands for outstanding qualification and experience with multiple years. We set high demands for all our testers to guarantee professional services and high quality.

Our foundations

Qualification and training of our employees is one of our most important quality attributes. Our ethical hackers regularly attend international cybersecurity and hacking conferences and prove their skills in practically oriented certifications.

All our penetration testers have a minimum qualification of the Offensive Security Certified Professional (OSCP) certification.

All employees have one of the following minimum qualifications:

Offensive Security Certified Professionals have a clear understanding of theory and practice, which they demonstrated in a realistic 24-hour hacking exam.

Offensive Security Wireless Professionals prove deep knowledge in the field of wireless networking (802.11).

Certified Red Team Professionals have demonstrated the theoretical and practical skills to understand and assess the security of a Windows Active Directory environment.

Certified Red Teaming Experts have demonstrated advanced skills in a special 48-hour exam to understand and assess the security of a Windows Active Directory environment.

Taylored Teams

Depending on the project's requirements, we provide tailored teams with various areas of expertise.

ISO 27001 Consultants

ISO 27001 consultants have certified know-how in the field of technical measures and the ISO standard.


Our lawyers are involved in questions of data protection law or in the involvement of the works council.

TÜV certified IT Security Officers

Our certified IT security officers will be happy to advise you on the design of secure infrastructures and solutions if required.

TÜV certified data protection auditors

If required, we also review aspects of data protection, e.g., the design of technical and organizational measures (TOMs).

Software and Application Developers

We have experienced software and application developers who can be used both during pentests, but also advise on the remediation of identified vulnerabilities.

Cyber Security Practitioner

The Cyber Security Practitioner (CSP) is a recognized certification in information systems auditing, control, and security.