Detack US

Detack US

Speciality: Application Layer Penetration Testing

11 employees
Visit Website View on LinkedIn
[01] About

Detack US is a private IT services and consulting firm specializing in password security, analysis, and quality enforcement for the finance industry; offers penetration testing and security audits; based in Ludwigsburg, Germany, with 1 employee and a -33.3% YoY growth. Recognized for high-quality security services and third-party pen-testing.

Detack GmbH is an independent supplier of high quality IT security audits, penetration testing, consulting services and self-developed IT security products. Our IT specialists are vested with extensive technical and organizational security expertise - a result of more than 15 years of research, auditing and consulting in numerous business fields, such as financial services & insurances, telecommunications, government authorities and industry. Self-developed products are aimed at the remediation of systemic vulnerabilities. EPAS (Enterprise Password Assessment Solution) - a solution to enforce truly strong passwords - is based on customer requirements and has been designed to close the very specific vulnerability of weak passwords. Satisfied customers across the globe and across all industries value Detack for being a partner in achieving the highest available quality in IT security. Specific Areas of Expertise: · Password Audit & Policy Enforcement (EPAS) · Mainframe & Midrange Systems · IoT & Industrial Systems · ATMs, Retail Banking & Financial Systems · SAP, Big Data, & Custom Applications Imprint: http://detack.de/en/terms.html Read more about our patented solution on: www.epas.de Contact us: media@detack.de
[02] Services
Provides IT Security Audits
Penetration Testing
Consulting Services
Self-developed IT Security Products.
[03] Certifications
ISO/IEC 27001:2022

ISO/IEC 27001:2022


Origin


ISO/IEC 27001 was developed jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). The standard evolved from the British Standard BS 7799, first published in 1995, with the first ISO/IEC 27001 version released in 2005. The most recent version, ISO/IEC 27001:2022, was published in October 2022. It was created to provide organizations with a systematic framework for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS), addressing the growing need for standardized approaches to protecting sensitive information in an increasingly digital world.


Industry Value


ISO/IEC 27001 is highly valued in the industry because it demonstrates an organization's commitment to information security through independent, third-party certification. The standard provides credibility and competitive advantage, often serving as a prerequisite for doing business with government agencies and security-conscious organizations. It helps companies systematically identify and manage information security risks, ensure regulatory compliance, and build customer trust. For many industries—particularly finance, healthcare, technology, and cloud services—ISO/IEC 27001 certification has become essential for winning contracts, entering new markets, and demonstrating due diligence in protecting client and organizational data.
OSCP

Origin of the OSCP


The Offensive Security Certified Professional (OSCP) certification was created by Offensive Security, a company founded by Mati Aharoni and other security professionals in 2007. The certification was developed to address the gap between theoretical knowledge and practical penetration testing skills in the cybersecurity industry. Offensive Security designed the OSCP to be a hands-on, performance-based certification that requires candidates to demonstrate actual hacking skills in a controlled lab environment rather than simply answering multiple-choice questions.


Industry Value and Importance


The OSCP is highly valued in the cybersecurity industry because it proves that holders possess real-world penetration testing abilities. Unlike traditional certifications, the OSCP's 24-hour practical exam requires candidates to successfully compromise multiple machines in a simulated network environment and document their findings professionally. This hands-on approach has made it a gold standard for entry to intermediate-level penetration testers, and it's frequently requested or required by employers hiring for offensive security roles. The certification's difficulty and practical nature have earned it significant respect among security professionals and hiring managers.
OSWP

OSWP Cybersecurity Certification


Origin


The Offensive Security Wireless Professional (OSWP) certification was created by Offensive Security, the same company behind the renowned OSCP certification. Launched in 2008, the OSWP was developed to address the growing need for professionals skilled in wireless network security assessment. Offensive Security created this certification to provide hands-on, practical training in identifying and exploiting vulnerabilities in 802.11 wireless networks, maintaining their philosophy of "Try Harder" and emphasizing real-world penetration testing skills over theoretical knowledge.


Industry Value


The OSWP is valued in the cybersecurity industry because it demonstrates proven practical ability in wireless network penetration testing through a hands-on exam format. Unlike multiple-choice certifications, holders must successfully crack WEP and WPA/WPA2 encryption and document their methodology in a professional penetration testing report. This certification is particularly respected because it validates actual technical competency rather than memorization, making OSWP holders attractive candidates for penetration testing roles, security consulting positions, and network security positions where wireless infrastructure assessment is critical.

Tüv Certified It-security Auditor