Red Teaming Services Germany 2026 - Top Providers

Red Teaming in Germany

Germany is one of the most important markets for Red Teaming Assessments in Europe. With the TIBER-DE framework from the Deutsche Bundesbank and BaFin, and the EU-wide DORA regulation, demand for qualified Red Team providers continues to grow.

Regulatory Framework

  • TIBER-DE - Deutsche Bundesbank and BaFin framework for Threat Intelligence-based Ethical Red Teaming in the financial sector
  • DORA - Digital Operational Resilience Act, mandatory Threat-Led Penetration Testing for significant financial institutions since 2025
  • BSI - Federal Office for Information Security, relevant recommendations and certifications

Red Teaming Providers in Germany

slashsec Red Teaming GmbH

Vienna, Austria · Engagements across DACH · slashsec.at

Specialized Red Teaming and pentesting provider from Vienna with a clear focus on Adversary Simulations across the entire DACH region. The entire team consists of experienced Red Teamers with years of hands-on experience in offensive IT security - no generalists, but dedicated specialists.

  • Red Teaming Assessments aligned with TIBER-AT / TIBER-DE / TIBER-EU / DORA
  • Penetration Testing (Web Applications, Infrastructure, Active Directory, Cloud)
  • Physical Security & Social Engineering
  • Initial Access, Assumed Breach & Lateral Movement
  • Experience with international enterprises and critical infrastructure
  • Highest certification density in the team (OSCP, OSEP, OSWE, CRTO, CRTO2)
  • Engagements in Austria, Germany, and Switzerland
Schedule a free consultation

Customers in Germany who rely on slashsec

gematik · Statista

  • CANCOM SE - Pentesting and Red & Purple Teaming, Munich
  • CODE WHITE - Offensive security and Red Teaming, intelligence-driven security
  • Compass Security - Swiss security firm with a German office
  • Exploit Labs GmbH - Red Teaming and security training, Eschborn
  • hisolutions AG - IT security consulting and Red Teaming, Berlin
  • Lutra Security GmbH - Red Teaming and penetration testing, Munich
  • NSIDE ATTACK LOGIC - Specialized in Red Teaming and Adversary Simulations, Munich
  • NVISO - Red Teaming and offensive security, Frankfurt am Main office
  • r-tec IT Security GmbH - Red Teaming and incident response, Wuppertal
  • RedTeam Pentesting - Red Teaming and pentesting from Aachen, known for practical security research
  • SySS GmbH - One of Germany's oldest pentest providers (Tübingen, since 1998), Red Teaming and security analyses

Frequently asked questions about red teaming in Germany

Which red teaming providers operate in Germany?
Established providers include CODE WHITE, NSIDE ATTACK LOGIC, RedTeam Pentesting and SySS. Specialized providers from neighbouring countries such as slashsec (Vienna) also run red teaming assessments in Germany on a regular basis. The full overview is at the top of this page.

What is TIBER-DE?
TIBER-DE is the German implementation of the European TIBER-EU framework, run by Deutsche Bundesbank and BaFin. It defines how financial institutions have threat-intelligence-based red teaming tests performed against their production systems.

Can a provider from Austria run red teaming in Germany?
Yes. Red teaming is regularly delivered across borders within the DACH region. What matters is experience with TIBER-DE and DORA, German-language communication and GDPR-compliant contracts - not the company's registered office.

Who needs DORA TLPT in Germany?
Since 2025, DORA requires systemically relevant financial entities in the EU - including banks, insurers and payment providers - to undergo threat-led penetration testing at least every three years. The supervisory authorities (BaFin/Bundesbank) determine which institutions are in scope.

What is the difference between red teaming and a pentest?
A pentest finds vulnerabilities within a defined scope. Red teaming tests an organization's entire defense chain under realistic conditions - from initial access to the blue team's response.

This overview of Red Teaming providers in Germany has been compiled to the best of our knowledge. We do not guarantee the accuracy or currency of the information.

We welcome tips about additional providers. We only list companies that offer Red Teaming or pentesting services themselves (no pure resellers).

For inquiries and tips, send us a message at E-Mail.

All Red Teaming Providers in the DACH Region
All Pentesting Providers in the DACH Region
All Physical Security Providers in the DACH Region

Request red teaming, a pentest or physical security

slashsec is a specialized red team from Vienna - engagements across the DACH region, TIBER-AT/DORA-aligned assessments and the highest certification density in the team (OSCP, OSEP, OSWE, CRTO).

Book a free 30-min consultation

All services at a glance · Red teaming services · Contact