Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
julz.de is the personal website of Julian Totzek-Hallhuber, positioned as an application security expert, author, and conference speaker rather than a cybersecurity product platform where services can be purchased directly. The site states that he is currently Lead Solutions Architect at XBOW, has 20+ years of cybersecurity experience, has worked at companies such as Veracode and Deny All in solution architecture, pre-sales, professional services, and enterprise AppSec programs, and is the author of Mastering the Art of Application Security Testing.
The site focuses on application security and DevSecOps, covering topics such as SAST, DAST, SCA, container security, IaC, AI in Security, and Secure SDLC. Its value lies more in methodology, tool selection, program planning, and team collaboration than in providing scanners, WAFs, or managed protection services. His background also mentions experience with WAF, IDS/IPS, penetration testing, forensics, and incident response, but the current site primarily promotes talks, books, and corporate workshops.
The site does not describe any deployable software, SaaS console, alerting policies, or security operations workflow, so it cannot be assessed like a traditional security product in terms of deployment model or alert management. What can be confirmed is that he offers keynotes, conference sessions, panel discussions, corporate workshops, podcasts, webinars, and similar formats. Integration capability mainly comes from his professional background: he is familiar with Jenkins, GitHub Actions, GitLab, and Azure DevOps, and previously productized standardized methods for integrating Veracode into CI/CD.
On compliance, the site only lists ISO 27001, PCI, GDPR, DORA, and NIS under technical skills; this should not be interpreted as the individual or his services being certified. Pricing is not disclosed. The site mentions that the new book is available on Amazon, but provides no price, nor any fees for speaking, consulting, or workshops.
The strengths are deep experience, full lifecycle AppSec coverage, and the ability to connect security tools, processes, executive communication, and business justification. It is suitable for CISOs, DevSecOps leaders, development managers, and large enterprise security teams looking for training, program design, or tool evaluation. The drawbacks are that service scope, pricing, delivery timelines, SLAs, and customer references are all unclear. If an organization needs a ready-to-use vulnerability scanner, code security platform, or compliance reporting system, it should choose a dedicated vendor instead.
The site does not provide information on access from China, so domain availability, payment methods, and the Amazon book purchasing experience would need to be verified in practice. For domestic teams needing comparable implementation tools, possible options to compare include Veracode, Snyk, Checkmarx, GitLab Security, as well as Chinese solutions such as Qi An Xin CodeSafe, Xmirror Lingmai, and MoreSec. If the goal is methodology training or an international AppSec perspective, this site is better suited as an entry point to expert resources.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on julz.de official site.
julz.de is an Germany Security provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach julz.de directly.