IT Sicherheit – frischer Wind
IT security – a breath of fresh air
Sécurité informatique – un vent de fraîcheur
Seguridad informática – un soplo de aire fresco
Hacker sind kreativ und finden immer neue Wege in Unternehmen einzudringen. Um Angreifern weiterhin einen Schritt voraus zu sein, braucht es immer wieder neue Ideen.

KALWEIT ITS – Wir bringen frischen Wind.
Hackers are creative and always find new ways to penetrate companies. To stay one step ahead of attackers, new ideas are always needed.

KALWEIT ITS – We bring a breath of fresh air.
Les pirates informatiques sont créatifs et trouvent toujours de nouveaux moyens de s'introduire dans les entreprises. Pour garder une longueur d'avance sur les attaquants, il faut sans cesse de nouvelles idées.

KALWEIT ITS – Nous apportons un vent de fraîcheur.
Los hackers son creativos y siempre encuentran nuevas formas de penetrar en las empresas. Para estar un paso por delante de los atacantes, siempre se necesitan nuevas ideas.

KALWEIT ITS – Traemos un soplo de aire fresco.



Our deep ties with the Hanseatic city of Hamburg are also linked to Hanseatic merchant tradition. In this way, our customers enjoy close cooperation at eye level – with the utmost discretion, anonymity and strong trust. However, our anonymized references provide insight into our diversified customer base:


Banking, Finance & Insurance: International, Employees < 3000, ECB- and/or BaFin-regulated financial companies

Construction, Industry & Energy Sector: Company Sales > 10 billion , Employees > 10,000

Retail: Sales of the company > 50 billion, Employees > 100,000

Publishing: Company sales > 1 billion


Among them, the following project activities:

  • Perimeter testing of networks and their services
  • Pentest web applications
  • API Pentest
  • Log4j vulnerability scan
  • Pentest of a self-developed ActiveDirectory software
  • MobileApp Pentesting: iOS and Android
  • IT forensic measures for potentially compromised systems
  • Internal pentests: Active Directory, Kerberos, Internal Services


as well as many others.

Banking institution

Total assets: 45-65 billion euros international operations

Project activity:

Penetration test (perimeter test as well as inside perpetrator test)
25 project days, remote/on-site
Penetration testing of firewall security as well as client environments. Procedure according to Cyber Kill Chain as well as PTES and OWASP Testing Guide


Customer sales EUR 5-10 billion Headquarters in Germany, international operations

Project activity:

Red Teaming Pentest (Cyber Incident Simulation)
35 Project days, remote
Review enterprise IT remotely for security related vulnerabilities, review incident processes for effectiveness and response through aggressive auditing on a global level, interact with Blue Team.

System gastronomy

Customer turnover: triple-digit million international operations

Project activity:

Red Teaming Pentest (Cyber Incident Simulation)
5 project days, remote/on-site
Review of the disciplines IT, organization (security culture), review of IT security policies (BSI 100-4, ISO/EC 22301) (BCM)


Construction company

Customer sales: 15-30 billion euros
Company headquarters in Germany, internationally active

Project activity:

Penetration test

OWASP Testing Guide, PTES 50 project days, remote penetration test of the group IT at the locations Europe and North America


  • Cyber Incident Simulation for Europe IT
  • Lecture activities
  • Penetration test
  • Red Teaming Concept (Draft)
  • Penetration test (internationally operating company)
  • Consulting activities on DevSecOps topics
  • Penetration testing
  • static code analyses
  • Perimeter test
  • Inside offender test
  • OSINT research
  • Consulting activities for the IT security strategy EMEA
  • Penetration test
  • IT Audit
  • Penetration test mobile apps (over 4 million customer data)
  • Penetration test (medium-sized company, globally active, medical products)
  • Consulting activities & penetration testing (startup)
  • Consulting activities on DevSecOps / MVP project support (4000-10,000 employees)
  • Red Teaming penetration test of the entire group (listed)
  • Penetration test
  • Penetration test
  • IT Audit
  • Perimeter test
  • Incident Response (companies with less than 100 employees)
  • IT emergency manual according to BSI 100-4
  • Incident Response (medium-sized company)
  • Penetration testing
  • Mass penetration testing
  • DevSecOps project support & consulting
  • Incident Response