Xmas 2011 Hacking-Lab Challenge
Hi all, Thank you for your great support and feedback in this amazing year. With Swiss Cyber Storm 3 and OWASP we have been able to further develop the number of security puzzles in Hacking-Lab. We are...
View ArticleClik here to view.
OWASP 2012 Online Competition
Learning by Doing! We are proud to run the OWASP 2012 Online Competition with Hacking-Lab. The event is free for everyone, why not participating this educational program? The winner will get a free...
View ArticleClik here to view.
Compass Security at ASFWS in Yverdon-les-Bains
Compass Security is proud to be part and sponsor of the Application Security Forum – Western Switzerland (ASFWS), a conference about application, identity and cyber security which will be take place...
View ArticleClik here to view.
ASFWS slides and OWASP meeting tomorrow
As announced a while ago, I had the chance to organize both a workshop about our hacking-lab.com and present my talk “Advances in secure (ASP).NET development – break the hackers’ spirit” at the AppSec...
View ArticleAPT Detection Engine based on Splunk
Compass Security is working on an APT Detection Engine based on Splunk within the Hacking-Lab environment. Hacking-Lab is a remote training lab for cyber specialists, used by more then 22’000 users...
View ArticleForensic Investigation Kurs in Bern
Die Teilnehmer lernen die Grundlagen der forensichen Untersuchungen anhand eines fiktiven Hacker-Angriffs. Dazu startet das Seminar mit einem Szenario, welches Schritt für Schritt aufgeklärt werden...
View ArticleChallenges in Log Management
Recently, SANS Institute has published the 9th log management survey (2014). The paper identifies strengths and weaknesses in log management systems and practices. It further provides advice to improve...
View ArticleVom Domäne Benutzer zum Domäne Administrator (exploit MS14-068)
Der von Microsoft publizierte “out-of-band” Patch MS14-068 [1] (Vulnerability in Kerberos Could Allow Elevation of Privilege – 3011780) behebt eine Schwachstelle in Kerberos, welche es einem normalen...
View ArticleAktuelle Security Trainings
Web Application Security Training Die Compass Security hat im Moment im Bereich Web Security zwei Kurse ausgeschrieben. Ein Basic und ein Advanced. Unsere öffentlichen Kurse dauern jeweils 2-Tage und...
View ArticleClik here to view.
Compass Security at CYBSEC15 in Yverdon-les-Bains
As in past years, Compass Security will participate in the upcoming CyberSec Conference in Yverdon-les-Bains (formerly Application Security Forum – Western Switzerland). This year, we will contribute...
View ArticleClik here to view.
Come’n’Hack Day 2015
Being a security analyst at Compass Security is an interesting thing, no doubt. Besides interesting projects, there is plenty of know-how transfer and interactions between the employees. For example,...
View ArticleClik here to view.
Hacking-Lab @ CodeMash 2017
What is CodeMash? CodeMash is a conference for software developers and IT security professionals. It takes place every year in Sandusky, Ohio, in the U.S. The event consists of two parts: two days of...
View ArticleClik here to view.
BFH Exploiting & Defense Course
I am given the opportunity to teach Exploiting & Defense in the Bern University of Applied Sciences (Berner Fachhochschule) in the module Application and Software-Security. In seven afternoons,...
View ArticleClik here to view.
Wrap-up: Hack-Lab 2017 #4
What is a Hack-Lab? Compass Security provides a monthly playful occasion for the security analysts to get-together and try to hack new devices, dive into current technologies and share their skills...
View ArticleClik here to view.
ASFWS slides and OWASP meeting tomorrow
As announced a while ago, I had the chance to organize both a workshop about our hacking-lab.com and present my talk “Advances in secure (ASP).NET development – break the hackers’ spirit” at the AppSec...
View ArticleClik here to view.
Wrap-up: Hack-Lab 2017 #6
What is a Hack-Lab? Compass Security provides a monthly playful occasion for the security analysts to get-together and try to hack new devices, dive into current technologies and share their skills...
View Article
