Pentesting of DICOM software

As an international standard for medical imaging and image communication, DICOM defines the formats for medical images and ensures that they can be exchanged with the required data and in the required quality for clinical use.

DICOM technically defines the file format and the network protocol. The file format is designed to store medical images and patient data. It may contain data from different imaging modalities, such as radiography, ultrasonography and computed tomography. It usually contains a lot of metadata (e.g. patient data). The network protocol 104/tcp is a a client-server protocol used to transfer medical images. It is frequently used to integrate medical imaging devices and Picture Archiving and Communication Systems (PACS).

During the penetration test we for example check if the medical data is transmitted unencrypted, how CVE-2019-11687 is mitigated and are going to fuzz the DICOM API using our python dicom fuzzing library.

Talk now
to our
Pentest experts.

Contact us
Patrick Sauer, OSCP, M.Sc. Security Management
Patrick Sauer, CEO
OSCP, M.Sc. Security Management

Talk now to our Pentest experts.

Patrick Sauer, CEO
Patrick Sauer, CEO
OSCP, M.Sc. Security Management
Contact us

Penetration Testing

Since 2013 we conduct professional penetration test, based on international industry standards and years of experience in penetration testing, red teaming and hacking.

As a company for professional penetration testing, we do some things differently than other pentest provider: As a penetration test firm, we do not sell vulnerability scans as pentest. We do also focus on business security risks. You are looking for a professionally conducted penetration tests? Get the binsec team for your Pentest. Read more about our pentest service.

Contact us

Company

binsec GmbH
Solmsstraße 41
60486 Frankfurt am Main
Germany

Legal notice

Director: Patrick Sauer
Authorised Officer: Florian Zavatzki, Dominik Sauer
Registration: Frankfurt am Main, HRB97277
Turnover Tax Identification No.: DE290966808

© 2025 All rights reserved by binsec GmbH.

© 2025 All rights reserved by binsec GmbH.