Blackfort Technology

Client References & Contact

Work with Blackfort Technology

Strategic cybersecurity consulting and technical security implementation – delivered by the same team, in the same engagement.

Get in Touch

Our Clients

Selected clients.

Horváth AGVariolytics GmbHLapID Service GmbHSUMUS Software GmbHAurum Consulting GmbHRED Global (RED Commerce GmbH)aquatune GmbH3steps2webVuca Simulations (Bruncken & Gebhardt GmbH)DESH Datenservice & MailingReimbold ImmobilienPraxis Dr. KsendsowskiZahnfee – Kinder Zahn ZentrumBullets Playing Cards

Client Feedback

What clients say.

Blackfort Technology guided us through ISO 27001 certification in a professional and pragmatic way. The combination of strategic advisory and hands-on technical implementation is rare to find in a single firm.

CTO, mid-sized software company

Blackfort's DORA readiness analysis gave us a clear, honest picture of where we stood and what needed to be done. The roadmap was realistic and immediately actionable.

Head of IT Security, financial services provider

The penetration test uncovered several critical vulnerabilities in our web application that we would not have found without this external perspective. The report was detailed and genuinely useful.

IT Director, e-commerce company

Expertise & external recognition

Publications, contributions & talks.

Widely cited analysisIncident Analysis·May 5, 2026

DNSSEC Failure in the .de Zone: Why bahn.de, spiegel.de and blackfort-tec.de Returned SERVFAIL

Technical deep-dive into the DENIC DNSSEC incident of May 5, 2026: identifies the malformed RRSIG record (keytag 33834) at TLD level from public DNS data and explains why only DNSSEC-validating resolvers were affected.

Read article →

Featured in

  • heise online / c’t

    A YouTube explainer "Warum .de-Domains plötzlich nicht mehr erreichbar waren" (editor: Malte Kirchner) names Blackfort Technology explicitly as the source of the technical assessment and links our analysis in the video description.

    Watch video

  • IT-Administrator Magazin

    A technical analysis by the IT security firm Blackfort Technology provides more specific clues about the trigger.
    Read article

  • Golem.de · Marc Stöckel · May 6, 2026

    More information is, however, already available at the cybersecurity firm Blackfort Technology. They have published two reports on the incident — a simplified version and a more detailed technical analysis.
    Read article

  • Golem.de · Günter Born · May 6, 2026

    A detailed breakdown of which DNS services were affected and how it all fits together was provided by blackfort-tec.de.
    Read article

  • smartzone.de

    A technical analysis by the IT security firm Blackfort Technology now paints a clearer picture.
    Read article
GuideLead author

Allianz für Cyber-Sicherheit (BSI) · AI Security Expert Circle

September 29, 2025

Guide to Penetration Testing of Large Language Models (LLMs)

Practitioner guide for the organisational, technical and legal preparation and execution of penetration tests on LLM-based systems — from threat modelling and OWASP LLM Top 10 methodology to audit-ready documentation.

AI SecurityLLMPenetration TestingBSIOWASP
ACS landing pagePDF
TalkSpeaker

Allianz für Cyber-Sicherheit · Partner offering

May 20, 2025

Vulnerability Management in Practice — Implementing DORA and other Regulatory Requirements

Webinar translating regulatory requirements into technical measures: selection and integration of vulnerability scanners, web application testing, SBOMs for third-party libraries and audit-ready documentation.

DORAVulnerability ManagementRegulationKRITIS
ACS announcement

Project Examples

Selected engagements.

Financial Services

DORA Gap Analysis and Compliance Roadmap

Comprehensive DORA readiness assessment for a payment services provider, including prioritisation of required measures and a realistic implementation timeline.

DORAGap AnalysisFinancial Sector
Energy & Utilities

ISMS Build-Out to ISO 27001 Certification

End-to-end ISMS implementation and certification support for a regional energy supplier – from gap analysis through to successful certification audit.

ISO 27001KRITISISMS
Software & SaaS

SBOM Integration into CI/CD Pipeline

Integration of SBOM generation and continuous vulnerability monitoring into the development pipeline of a SaaS provider, covering Cyber Resilience Act requirements.

SBOMCRADevSecOps
Telecommunications

TKG §166 Security Concept

Development and review of a TKG §166-compliant security concept for a regional telecommunications provider, including BNetzA submission preparation.

TKG §166BNetzASecurity Concept
IT Services

Active Directory Hardening

Comprehensive hardening of an Active Directory environment including BloodHound attack path analysis, tiering model implementation and privileged access controls.

Active DirectoryHardeningPAM
Manufacturing

Penetration Test and NIS2 Readiness

Combined engagement: network penetration test and NIS2 applicability assessment for a mid-sized industrial company with OT environment.

PentestNIS2OT Security

Contact

Start the conversation.

Christian Gebhardt, Founder & Managing Director, Blackfort Technology

Christian Gebhardt

Founder & Managing Director

Send a direct message

Contact Details

Address

Ernst-Robert-Curtius-Str. 8a
53117 Bonn, Germany

Response Times

Response within 1–2 business days
Initial call by phone or video on request
Proposal within one week

Advisory Areas

ISMSNIS2DORAPentestsAI SecurityBSI C5SBOMISO 27001

Our Services

Send us a message

Please note: our contact form is currently in German. For an English enquiry, please email us directly at info@blackfort-tec.de or use the form below.