Service

Security Testing

by CYOSS GmbH

Logo of Code CYOSS GmbH

Key Facts

  • Manual penetration tests, vulnerability scanning, code analysis
  • Embedded, IoT and OT Pentesting
  • Analysis, simulation & test of networks, concepts and technologies

Key Facts

  • Manual penetration tests, vulnerability scanning, code analysis
  • Embedded, IoT and OT Pentesting
  • Analysis, simulation & test of networks, concepts and technologies

PRODUCT DESCRIPTION

CYOSS offers security tests to identify vulnerabilities and to analyse existing security mechanisms. We test systematically and look specifically for attack potential. If vulnerabilities are found, we evaluate their risk and recommend how to fix them.
Our services include manual penetration tests via automated scanners for industrial control systems, IoT and embedded pentesting as well as static/dynamic code analysis and analysis, simulation & testing of networks, concepts and technologies.

Testing for products & embedded systems:
Using methods like debugging, replay attacks, fuzzing and message injection, we test backend communication (cars, aeroplanes, ships, …), electronic control units (ECU), sensor / actuator units.

Testing for enterprise IT & cloud:
Using vulnerability scans, configuration analysis, container enumeration and OWASP TOP 10, we test business-critical systems (CRM, ActiveDirectory, Mail, SAP, HANA, …), network infrastructures, security appliances, cloud applications.

Testing for operational technology (OT):
With methods such as sniffing and spoofing as well as evaluation of remote access, we test Industrial Control Systems (ICS) – e.g. Programmable Logic Controllers (PLC), Remote Terminal Units (RTU), Human Machine Interfaces (HMI) –, SCADA systems, connection between OT & IT.

Show More

Product Expert