Dr. Antje Winkler
Senior Manager | Offensive Security
Offensive Security
Offensive Security
Strengthen Your Digital Defenses!
Whether it is complex IT or OT ecosystems, embedded systems, IoT environments, automotive components, mobile apps, or web applications, our Offensive Security Team operates like a real attacker to assess your security measures and identify potential vulnerabilities before they can be exploited by others.
Additionally, our experienced Red Team conducts comprehensive, realistic attack simulations to evaluate your company’s cyber defense measures, uncovering weaknesses at both the technical and process levels.
Prioritizing transparency, trust, and personalized consultation, we work closely with you to ensure that your security strategy is perfectly aligned with your specific needs. Of course, we remain available to answer any questions you may have even after the test.
Protect your company from today's and tomorrow's threats. Stay one step ahead of attackers with our expertise!
Additionally, our experienced Red Team conducts comprehensive, realistic attack simulations to evaluate your company’s cyber defense measures, uncovering weaknesses at both the technical and process levels.
Prioritizing transparency, trust, and personalized consultation, we work closely with you to ensure that your security strategy is perfectly aligned with your specific needs. Of course, we remain available to answer any questions you may have even after the test.
Protect your company from today's and tomorrow's threats. Stay one step ahead of attackers with our expertise!
Our Offer for You
Penetration Testing
Identify vulnerabilities in your company networks, applications and systems with our help. Our team will examine your solution from the perspective of a real attacker to determine the current level of security. You will receive a detailed report that not only lists identified vulnerabilities and their criticality, but also recommends possible measures for remediation.
LEARN MORE
Red Teaming
Our Red Teaming Services simulate realistic cyber attacks on your company. The objectives of the campaign are agreed upon with you in advance, and our approach is tailored precisely to your needs. From targeted attacks on individual systems or company divisions to comprehensive attack simulations as part of a large-scale Red Teaming campaign, we offer various scenarios that put your security infrastructure to the test.
LEARN MORE
IoT & Embedded Penetration Testing
BDO Cyber Security GmbH operates a modern testing laboratory specifically equipped for security analyses at hardware level. Our experts have the necessary equipment and knowledge to thoroughly examine embedded devices including radio and automotive hardware components.
We analyze the entire device, from the firmware level to the circuit board. Our expertise covers a wide range of internal and external interfaces, such as JTAG/SWD, UART, SPI, I²C, USB, Ethernet, CAN, Wi-Fi, Bluetooth (Low Energy), ZigBee, LoRaWAN, and 2G-5G, as well as other industry-specific standards. Additionally, we examine the device's connections to other systems, such as backend communication, remote update processes, and remote maintenance mechanisms.
LEARN MOREWe analyze the entire device, from the firmware level to the circuit board. Our expertise covers a wide range of internal and external interfaces, such as JTAG/SWD, UART, SPI, I²C, USB, Ethernet, CAN, Wi-Fi, Bluetooth (Low Energy), ZigBee, LoRaWAN, and 2G-5G, as well as other industry-specific standards. Additionally, we examine the device's connections to other systems, such as backend communication, remote update processes, and remote maintenance mechanisms.
OT Penetration Testing
Networking and digital management are becoming increasingly important for production facilities and other critical infrastructures. Previously isolated OT environments are increasingly being connected to IT infrastructures. Additionally, the European Union's NIS 2 Directive tightens cyber security requirements for critical infrastructures, including digital platforms such as cloud services and social networks.
Our security tests help organizations evaluate the effectiveness of their security measures, ensuring compliance with the NIS 2 Directive. By identifying vulnerabilities and highlighting appropriate countermeasures in OT & IT systems, we not only enhance security but also enable organizations to proactively respond to changing cyber threats. Regular security testing is not only legally mandated but also a crucial protection mechanism for sensitive data, strengthening the trust of customers and partners.
LEARN MOREOur security tests help organizations evaluate the effectiveness of their security measures, ensuring compliance with the NIS 2 Directive. By identifying vulnerabilities and highlighting appropriate countermeasures in OT & IT systems, we not only enhance security but also enable organizations to proactively respond to changing cyber threats. Regular security testing is not only legally mandated but also a crucial protection mechanism for sensitive data, strengthening the trust of customers and partners.
Offensive Security Consulting
In addition to the services mentioned above, we offer a range of consulting services to complete our portfolio. Our expertise extends to conceptual areas, including advising on the development of security concepts and technical designs, conducting risk and threat analyses, and supporting you in interpreting vulnerabilities within the context of your organization.
LEARN MOREOur Expertise
Our experienced team of penetration testers and Red Team professionals holds various certifications, including:
- OffSec Certified Professional (OSCP)
- OffSec Certified Expert 3 (OSCE³)
- OffSec Web Expert (OSWE)
- OffSec Experienced Penetration Tester (OSEP)
- OffSec Exploit Developer (OSED)
- GIAC Reverse Engineering Malware (GREM)
- GIAC Experienced Penetration Tester (GX-PT)
We are pleased to provide you with this expertise.
- Certified Red Team Operator (CRTO)
- Certified Information Systems Security Professional (CISSP)
- ISTQB Certified Tester / Test Manager
- HackTheBox Certified Penetration Testing Specialist (HTB CPTS)
- Cyber Security Professional (IHK)
Why You Should Choose Us
- Professional team of penetration testers and Red Team experts with relevant certifications and extensive experience
- Broadly skilled experts (e.g., web applications and services, IT infrastructures, embedded systems and IoT devices, automotive hardware/software, various radio protocols, and mobile applications)
- State-of-the-Art testing laboratory equipped for a wide range of hardware-related tests
- In-depth analysis of your systems from the perspective of a real attacker
- Customized solutions tailored to your specific requirements and IT systems
- Testing according to established and recognized standards
- Comprehensive test report and joint debriefing
What should you consider? What key factors should you address? We are here to support you with these and any other concerns.
