About Us

Experts in the field of IT security and web development
Mon-Fri, 9am - 6pm CET

Who we are

Web Security Scan is part of DongIT. We are experts in the fields of IT security and web development. These complementary core competences together form a unique and powerful combination. Knowledge and experience in web development is used when performing security assessments and vice versa. This enables us to look deeper into programming code, understand semantics of programming languages and improvise with alternative methods and techniques during penetration tests. This makes our service stand out from others.

We recognize the importance of secure web applications and IT infrastructures and make this accessible to a wide audience. With our standard security packages and custom solutions, there is a suitable security test for every type of customer. Our clients (100+) are diverse and include municipalities, ministries, software suppliers, SMEs and large commercial and (semi-)public organizations.

Certified IT security experts

Our experienced IT security experts have a proven track record of testing web applications and underlying systems. All our security experts have a university degree and possess relevant certifications: CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), OSCP (Offensive Security Certified Professional) and CEH (Certified Ethical Hacker).

Years of experience (15+ years) and expertise in security testing and web development is also reflected in the development of secure web applications (Security-By-Design). We build web applications based on the latest open source software and techniques. Are you interested in developing a secure custom web application?

Go to the DongIT website for more information.

DongIT on Dutch national television

Nieuwsuur, a Dutch public news programme, visited DongIT for an interview with security researcher Wouter van Dongen, after he demonstrated vulnerabilities in the web applications of Dutch municipalities.

Website DongIT


Our experience and expertise has led us to follow a very detailed and structured methodology based on the OWASP Testing Guide for performing Web Application Security Assessments and the ICT Security Guidelines for Web Applications of the National Cyber Security Centre (Dutch organization). This methodology provides a high level of assurance that all necessary areas of the application are tested and as many issues as possible are found.

Our researchers approach security assessments with a mindset and techniques of a hacker to find vulnerabilities and misconfigurations within applications. There is no better way to test web application security.


Research results are delivered in professional reports, based on international standards and guidelines (OWASP Top 10/SANS). Our reports include security research findings and recommendations for resolving security issues and to improve the overall IT security. Reports can be customized to specific needs upon request.