slashsec is an independent offensive security consultancy headquartered in Vienna, Austria. Founded in 2021, it focuses on Red Teaming, Adversary Simulation, and penetration testing. Rather than selling security software, slashsec validates an organization’s defensive capabilities across technology, people, and processes by simulating real-world attacks. Its services cover the DACH region: Austria, Germany, and Switzerland.
Based on the available material, slashsec’s main protection model is attack-perspective assessment: Red Teaming, Threat-Led Penetration Testing, web application penetration testing, internal and external infrastructure testing, Active Directory/Windows security, source code analysis, social engineering and phishing, and physical security assessments. Its distinguishing feature is combining technical exploitation, Phishing, Physical Security, and Social Engineering within a single adversary simulation framework, making it suitable for validating whether SOC, EDR, security monitoring, and incident response capabilities are genuinely effective.
slashsec delivers services as consulting engagements: a free 30-minute initial consultation, strategy and scoping, execution of the Assessment, and a detailed report with recommendations. The material explicitly states that it “does not sell software,” so there is no traditional SaaS deployment model. On compliance, the team holds individual certifications such as CRTO, OSEP, OSWE, OSCP, and RTOS, and states that its services are aligned with TIBER-AT, with relevance to TIBER-DE, DORA, and FINMA scenarios. However, no company-level ISO or SOC certification was found. Its integration capabilities are more about operating within a client’s existing SOC, EDR, AD, web, network, and physical access control environments for validation, rather than API-based integration.
Public pricing information is limited, but the material states that a Red Teaming Assessment requires a budget of at least €40,000, and a free initial consultation is available. slashsec is better suited to mid-sized and large enterprises, critical infrastructure operators, and organizations in sectors such as finance, healthcare, and manufacturing that already conduct regular penetration testing, have security monitoring visibility in place, and want to validate their security investments through realistic attacks. For small businesses with immature security foundations or limited budgets, the entry barrier is relatively high.
Its strengths include a specialist positioning, case coverage across sectors such as CERT, healthcare, manufacturing, and education, transparent team credentials, and vendor independence. Its drawbacks are limited pricing transparency, a primary regional focus on DACH, and the lack of a continuous automated platform. Access from China is not covered in the material and is therefore unknown. Chinese customers that require local compliance support, Chinese-language delivery, and convenient payment options may consider domestic red team and penetration testing service providers such as Qi An Xin, NSFOCUS, Venustech, and DBAPPSecurity as alternatives.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on slashsec.at official site.
slashsec.at is an Austria Cybersecurity provider. TG4G tracks its product information, with monthly pricing from $40,000.00, an overall rating of 8.0/10, and a China-accessibility score of Limited (proxy recommended). Click "Visit Official Site" to reach slashsec.at directly.