ToT secures EU seed funding to build the future of IoT security. Click for more...

🇪🇺

ToT secures EU seed funding to build the future of IoT security. Click for more... 🇪🇺

Get compliant,
Stay compliant.

The IoT compliance is slow, consultant-heavy, and full of moving targets. By automating assessments, ToT reduces costs, save time, and keeps you ahead of new vulnerabilities.

A black and white illustration of a woman in a traditional dress holding a basket.
Black and white photograph of a bearded man wearing a hat, suit, and sunglasses, standing outdoors near trees.

Automate
security testing

Replace manual assessments with fast, repeatable automation. Test earlier, ship sooner, and avoid costly surprises.

Powered by Toolsaf — our open-source test automation framework that integrates seamlessly with your existing workflows and tools.

Cut costs
hiring expensive consultants

Run IoT security tests in-house. Re-gain control, and get full visibility of your compliance data.

Stay compliant
24/7

Monitor every update with built-in, round-the-clock checks. Automatically generate compliance-ready reports for regulators, customers, and suppliers.

ToT helps IoT product teams bring security expertise in-house, cutting out consultants for a smoke and mirror show and giving full transparency into compliance. Powered by the open-source Toolsaf framework, it delivers fast, repeatable, and automated security testing that your own developers can run directly within their workflows. By testing early and continuously, ToT removes the witchcraft from compliance — reducing costs, avoiding late surprises, accelerating revenue, and enabling more predictable time-to-market. With round-the-clock monitoring and audit-ready reports always available, every code update is automatically checked so you stay compliant with regulators, customers, and suppliers at all times

Did you know, the law just changed?

August 2025 saw the first of major regulatory requirements coming for IoT industry.

The Radio Equipment Directive (RED) took effect starting August 2025. Cyber Resilience Act (CRA) is coming in 2027 and takes it a step further by requiring a mandatory audit of the compliance test. Both of these standards are enforced across the European Union (EU). Stay ahead of regulatory changes with Test of Things’ real time compliance management platform.

Yesterday:
Compliance was a choice.

Test of Things helps you accelerate time-to-market and eliminate expensive consultants with compliance management platform. Get your compliance needs met for IEC 62443-3, Radio Equipment Directive (RED), Cyber Resilience Act (CRA), or any custom standard.

IEC 62443-3

Mandates an audit

De facto Industry compliance standard used across the world, originally designed for industrial devices.

Today:
Compliance is mandatory.

Radio Equipment Directive

Audit not required, but encouraged.

Purpose-build compliance standard designed for IoT devices. 

Mandated August 2025
Tomorrow:
Compliance has to be certified.

Cyber Resilience Act

Mandated for all IoT devices sold in EU, starting 2027. Mandatory compliance that also requires an audit.

Mandates an audit

How to get compliant?

  • Define your IoT system, with drag-and-drop designer

    Requirements are automatically translated into security tests to your entire IoT system including IoT devices, network devices and gateways, cloud back-end and front-end, operating systems and mobile apps, end-to-end

  • Easily assess compliance against selected standards. No more witchcraft.

    Say good bye to the witch craft of security standards.
    ToT de-crypts complex standards into easy tasks, making it super-easy for you to assess your own IoT without any external help. And if any help is needed, ToT AI is there to guide you through.

  • Get audited right within ToT

    Once you achieve compliance against one or more standards, you can request or perform audit from right your ToT Organization, or invite an external auditor to do it.

How to stay compliant? »»»

  • Compliance achieved! Whats next?

    Schedule continuous monitor. Requirements are automatically translated into security tests to your entire IoT system including IoT devices, network devices and gateways, cloud back-end and front-end, operating systems and mobile apps, end-to-end

  • Get notified of a failed test

    Be the first to get notified of new vulnerabilities. The vulnerabilities can be identified by a scheduled test, an SBOM update, or security audit.

  • Tot Monitor running...

    Continuous Monitor

  • Get notified of new change-requests from audit

    ToT makes it easy for you to get notified of change-request created by your internal or external auditors.

  • ToT monitor running

    Description goes here

  • Get notified of new vulnerabilities updated to SBOM

    A vulnerability is identified in an SBOM update.

Designed by security experts,
for IoT experts, not security.

Compliance managers •

Auditors •

Compliance managers • Auditors •

Headshot of a compliance manager

CEO •

CTO •

CISO •

CFO •

CEO • CTO • CISO • CFO •

Headshot of CEO, CTO, CFO, CISO

IoT Product Managers •

Developers •

IoT Product Managers • Developers •

Rauli Kaksonen, PhD
CTO

PhD in cybersecurity with decades of experience in the field. Previously co‑founded and successfully exited Codenomicon, now leading innovation at Test of Things to advance IoT security.

Marko Kaasila
CEO

Experienced entrepreneur with deep expertise in SaaS, a strong background in tech leadership and product creation. Previously Co‑founded and successfully exited Bitbar, innovating mobile test automation space.

Our mission

Our mission at Test of Things is to protect customers and society from cyber incidents by making IoT cybersecurity easy and automated.

We are building a cloud service to automate security testing so that our customers can be ship with peace of mind, and in compliance with the regulation. With our cloud service, you can integrate security already into development lifecycle and test security continuously, lowering risks, lowering costs and enhancing reputation.

Backed by
the European Union

Supported by EU funding through ELY-Keskus (Center for Economic Development, Transport and the Environment), Test of Things is advancing innovative solutions to drive meaningful impact across industries and communities throughout Europe.
Read the blog ↗

Stay ahead of vulnerabilities

Test of Things makes IoT device security simple. Automate your testing, run instant gap analysis, and generate compliance-ready reports — all in-house, without costly consultants.

Security standards are complex, vary by industry and region, and can slow your launch. Test of Things removes the guesswork so you can cut costs, reduce risk, and bring secure products to market faster.