drwetter.eu

What It Is

Dr. Wetter IT-Consulting is an independent information security consultancy based in Germany. Its website highlights nearly 30 years of experience, with services including penetration testing, IT hardening, post-incident forensic analysis, information security consulting, process optimization, and security training. It is not a typical SaaS security product, but rather an expert-led service provider suited to organizations that need in-depth manual assessment and customized recommendations.

Core Capabilities and Dimensions

In terms of protection scope, it covers penetration testing or audits for web applications, networks, systems, containers, and cloud environments. It can also handle hardening for legacy systems, physical/virtual systems, and container environments such as Docker and Kubernetes. The website clearly emphasizes that testing is “individualized, manual, and carefully executed,” with human-written reports delivered afterward. Findings are prioritized by technical risk, and remediation recommendations are explained for both technical teams and management. For management and alerting, the service is more project-based and report-driven; there is no indication of continuous monitoring, centralized alerting, or platform-style operations. Its integration capabilities can only be inferred from the range of IT environments it serves, as no API, SIEM, or ticketing system integrations are disclosed.

Pricing and Target Users

Pricing information is relatively limited. Penetration testing/audits can be performed based on effort or at a fixed price, and the site mentions a streamlined check for small and medium-sized businesses. However, there are no public quotes, packages, delivery timelines, or SLA details. Suitable users include companies that need pre-launch security audits, container/cloud environment hardening, incident tracing, security process development, OWASP Top 10 or ransomware risk training—especially SMEs or project teams that prefer involvement from senior consultants.

Pros and Cons

Its strengths are a strong experience profile, service coverage across assessment, hardening, forensics, consulting, and training, plus an emphasis on manual analysis and management-readable reports. The drawbacks are that public materials do not provide details on compliance certifications, standardized methodologies, team size, service levels, or pricing. There is also no visible information about Chinese-language support, remote cross-border delivery, or payment methods.

Access from China and Alternatives

Website accessibility from China cannot be determined from the available text alone, and payment methods are not disclosed. If Chinese companies need local compliance support, Chinese-language communication, and on-site services, they may want to prioritize providers such as 奇安信, 绿盟科技, 安恒信息, and 启明星辰. For international manual penetration testing services, alternatives to compare include NCC Group, Bishop Fox, Cobalt, and Synack.