Pentest Factory stands for above-average qualification and several years of experience. We set high standards for our pentesters to guarantee professional performance and high quality.

Our foundations

The qualification and training of our employees is one of our most important quality features. Our Ethical Hackers regularly attend international IT security and hacking conferences. Furthermore, you prove your skills by means of practice-oriented certifications.

All our penetration testers have a minimum qualification of the Offensive Security Certified Professional (OSCP) certification.

All employees have one of the following minimum qualifications:

Offensive Security Certified Professionals have a clear understanding of theory and practice, which they demonstrated in a realistic 24-hour hacking exam.

Offensive Security Wireless Professionals prove deep knowledge in the field of wireless networking (802.11).

Certified Red Team Professionals have demonstrated the theoretical and practical skills to understand and assess the security of a Windows Active Directory environment.

Certified Red Teaming Experts demonstrate specialized knowledge of Active Directory and Windows Domains through a 48-hour practical exam.

Taylored Teams

Depending on the project's requirements, we provide tailored teams with various areas of expertise. To this end, we can also call on specialized consultants from our group of companies.

ISO 27001 Lead Implementers & Auditors

ISO 27001 consultants have certified know-how in the field of technical measures and the ISO standard.


Our lawyers are involved in questions of data protection law or in the involvement of the works council.

TÜV certified IT Security Officers

Our certified IT security officers will be happy to advise you on the design of secure infrastructures and solutions if required.

TÜV certified data protection auditors

If required, we also review aspects of data protection, such as the design of technical and organizational measures (ToM`s).

Software and Application Developers

We have experienced software and application developers who can advise on both pentesting and remediation of findings.

Cyber Security Practitioner

The Cyber Security Practitioner (CSP) is a recognized certification in information systems auditing, control, and security.