Security Research & Consulting
Tell me more

About Comsecuris

We provide services that empower our customers to make informed decisions about security strategy. Being able to defend systems effectively requires having hard data on offensive capabilities. This type of actionable knowledge is often hard to acquire, especially in the mobile and embedded space. Our mission is to provide our customers with such data.

To this end, we specialize in reverse-engineering, vulnerability discovery, and custom tool development services.

We enjoy researching new attack vectors and techniques to push the envelope on offense and show what truly determined attackers are capable of.


Our clients come from a wide range of business areas, but they often share a common problem: lacking visibility into the security impact of software and hardware components that they develop or integrate into their products. This is typically compounded by the difficulty of approaching the security assessment of such (often black box) components without established testing methodologies, like debuggers, emulation environments, static or dynamic security testing tools.

The security analysis, custom tool development, and training services that we offer help our clients overcome these challenges and improve their security measures.

To this end, we specialize in low level security with a focus on mobile and embedded systems, from Mobile OS kernels to the various software and hardware elements of complex systems such as System-on-Chip and Controller Area Network designs, including bootloaders, Trusted Execution Environments (TEE), basebands, and other Real Time Operating System (RTOS) components.

Security Assessments

Vulnerability Discovery

Binary and source code


Specialized in mobile and embedded systems

Cryptographic Assessments

Protocols and implementations

Custom Tool Development

Custom debuggers, static and dynamic analysis tools



Comsecuris researchers are active participants in the security community. This includes publishing whitepapers and presentations at both academic, community, and industry events. Following is a list of selected original research from our team members, before and since joining Comsecuris.




Our team

Dr. rer.nat. Ralf-Philipp Weinmann

CEO / Researcher

Ralf-Philipp Weinmann is the founder and CEO of Comsecuris. Previously he was a postdoctoral researcher at the University of Luxembourg. He received both his Diplom and his PhD from the Technical University of Darmstadt/Germany, both on topics in cryptology. He is driven by the desire of finding new and innovative ways to subvert security assumptions. He was the first to demonstrate the exploitation of over-the-air baseband memory corruption vulnerabilities. He is a frequent speaker at security conferences such as Black Hat, CanSecWest, and the CCC Congress, a winner of Pwn2Own, and received a Pwnie Award nomination in the category of Most Innovative Research in 2014.

Dr.-Ing. Nico Golde

Senior Researcher

Nico is a Senior Researcher at Comsecuris. Over the last years, Nico has worked as a product security engineer in the Qualcomm product security team. His work included building up and streamlining incident response and offensive security capabilities. He received a PhD from the Technische Universität Berlin while researching attacks carried out by modified cellular radio equipment. He enjoys research in the space of embedded device security, reverse engineering, vulnerability hunting, and software exploitation. In 2015, Nico and Daniel won the baseband category at mobile Pwn2Own for the first time in the history of the competition.

Daniel Komaromy

Senior Researcher

Daniel earned computer science degrees at the Crysys Lab of the Budapest University of Technology and Economics (2008) and the Georgia Institute of Technology (2010). He’s worked in the mobile security field since. During his five years at Qualcomm he hunted baseband 0-days, authored exploit mitigations and oversaw the establishment of an offensive security team. In 2015 he joined Comsecuris as a security researcher, focusing on embedded and mobile devices. In his free-time, Daniel is a proud member of the SpamAndHex CTF team.

Contact / Imprint

For business inquiries, please contact us!

Comsecuris UG (haftungsbeschränkt)
Bismarckstr. 120
47057 Duisburg

+49-203-928604890 (PGP)

EU VAT ID / USt-Id-Nr: DE291357352
Registered office: Bismarckstrasse 120, 47057 Duisburg, Germany
Commercial register: Amtsgericht Duisburg, HRB 27056
Director: Dr. Ralf-Philipp Weinmann