Digitalization and Information Security Services — Penetration Test

We examine your IT infrastructure from a hacker's perspective. In this process we scan a realistic cyberattack and identify vulnerabilities in your IT before attackers can exploit them. Our experts recommend suitable countermeasures and assist you in their implementation. It helps you to protect your systems and sensitive business and customer data from harmful unauthorized access and industrial espionage.

Penetration testing is a kind of test that compares the security risk assessment of products/ System/ Application against hacking attacks. It can intuitively reflect product safety, help customers to build safety information network, and prevent crisis to minimize the immeasurable losses. results of the penetration test can be used as supporting data for relevant safety or standard verification, and are necessary for the product to pass the verification.

Distance Business Programme ( D-Biz ) - 100% Funded by Government

Remote working or service has become a new trend against the backdrop of the epidemic. Under the Anti-Epidemic Fund, the Innovation and Technology Commission (ITC) has launched the Distance Business (D-Biz) Programme to support enterprises to continue their business and services through the adoption of IT solutions.

TÜV Rheinland Hong Kong as the D-Biz IT Service Providers (SP Reference Number: SP-399-478) launches 2 cybersecurity packages on network traffic analysis and endpoint data security. For more detail, please contact King Auyeung | Tel:852 3192 1367 | or Ben Yu | Tel: 852 2192 1589 |

Package 1. Greycortex MENDEL + Penetration Test / Vulnerability Assessment
The network traffic analysis solution from GREYCORTEX combines advanced detection techniques with full network visibility and integrations with security infrastructure tools to detect threats, visualize communications, and respond quickly and effectively. This includes advanced and unknown threats which are able to bypass existing security tools. Package includes Greycortex and Penetration Test / Vulnerability Assessment before installation.

Package 2. Z-Fort + GDPR compliance
X-Fort is the tools for protecting all the data during storage and transformation. X-Fort provides a comprehensive endpoint security solution includes DLP, DRM, and ITAM. It prevents confidential information from breaching or losing, and provides the management tools of applications, computer assets, and remote control. Package includes Z-Fort and the GDPR compliance service. Certificate can be provided by request.

D-Biz Programme highlights

• 100% funding support for IT solution purchase

• Maximum fund of $100,000 per IT solution

• Maximum $300,000 fund per enterprise

• Application is open from 9 am on 18 May 2020 to 6 pm 31 October 2020.

Service area

Pentesting Services

• Web Application Vulnerability Assessment & Penetration Testing

•Web Services / API Penetration Testing

• Mobile Application (Android, iOS) Penetration Testing

• Network Penetration Testing (External, Internal)

• Active Directory Vulnerability Assessment & Penetration Testing

• Rich/Fat clients Penetration Testing

• Source code analysis

• Wireless Security Assessment

• QVS (Quick Vulnerability Scan)

Configuration Reviews

• Configuration Reviews of Network Devices (routers, switches, firewalls, etc.)


• Database Audits (MySQL, MSSQL, PLSQL) –Automated & Manual


• Phishing Attack Simulation

• Advance Persistent Threat style attacks simulation

TÜV Rheinland, your reliable partner

• Project experience:

We have cooperated with many well-known enterprises for products such as smart home appliances, smart homes, and security monitoring. Through the evaluation results of the penetration test,we have helped our partners successfully complete relevant information security or privacy verification. Today, with the increasingly standardized safety and privacy requirements, TÜV Rheinland is supporting the enterprises who export the product and enter the overseas market.

• Professional service:

As an independent third-party, TÜV Rheinland provides companies and organizations with comprehensive information security from the needs of various industries from simple to complex, providing customization service. Not only can solve a variety of problems in compliance and verification, but also a professional consultant team of TÜV Rheinland for business app, product equipment, cloud computing and other services. It can also be fully tested and audited based on international standards and past cases, significantly improving the security of your industry modules and infrastructure.

• Global network:

We have penetration testing centers in Germany (i-sec), the US (Opensky), China, the Middle East and Southeast Asia. Our penetration testing laboratory uses Aryaka to establish networking interconnection systems. Through MS Team App to improve the communication and sharing systems, achieve international cooperation and exchange, and enhance the linkage of testing in different regions of the world.

Our Service

Service for Mastering Risk and Compliance

Identify IT risks and develop governance and compliance structures.   

Services for Advanced Cyber Defenses

Protect yourself from cyberattacks – with our supporting services.

Secure Cloud Adoption Services

We help you plan and implement a secure cloud solution.