Hackmanit is happy to announce its pro bono penetration test program for web and single sign-on (SSO) applications. In a half-year cycle, starting in January 2020, we offer free remote penetration tests with a maximum contingent of ten man-days.

We aim to support non-commercial organizations which cannot afford commercial penetration tests. You can apply for a free penetration test if you feel that your organization fulfills the following requirements:

  • Non-commercial application (e.g., open-source software)
  • High impact (e.g., a high number of users or high criticality in the security/privacy areas)
  • You as an applicant should take care of clarifying any potential ethical and legal concerns

There will not be any significant difference between our pro bono penetration test and our usual commercial engagements except that you do not have to pay anything. However, in contrast to our commercial tests, you must agree to allow Hackmanit to publish the unfiltered version of our penetration test report. We will do this after you have fixed the weaknesses or, at the latest, after 90 days from informing you about the weaknesses.

This is an example of a penetration test report: DENIC ID penetration test report.

What should your application cover?

  • Project name
  • Your name and your affiliation within the software project
  • Short motivation: Why should we choose your project for the pro bono penetration test?

To be added to the pool of possible candidates for our next pro bono penetration test, simply send us your application and we will inform you if we choose your project.

Finished Pro Bono Penetration Tests:

Karsten Meyer zu Selhausen

Your Contact for the Pro Bono Penetration Test Program

Karsten Meyer zu Selhausen
pro-bono@hackmanit.de (PGP-Key)



Our Experts Develop the Optimal Solution for You

Single Sign-On – OAuth

Are you faced with how to design and implement your corporate web application in a secure way? Are you wondering if your implementation is secure?

We will be glad to advise you; contact us for a no-obligation initial consultation. Thus, we are at your side with the following services and solutions:

IT Security Consulting  |  Training   |  Penetration Tests

Don't hesitate and find your way to your secure web application with us. We look forward to supporting you with your projects.


Karsten Meyer zu Selhausen

Your Contact for the Security of Your Web Application

Karsten Meyer zu Selhausen