Compass Security Blog - IT security know-how at first hand

17.03.2026

We just released a big update for EntraFalcon. The new Security Findings Report adds an interactive HTML overview to EntraFalcon that consolidates…

03.03.2026

While not new, a self-referencing LNK file in combination with winget configuration instructions can be a viable initial access payload for…

10.02.2026

Last year we wrote about a Windows 11 vulnerability that allowed a regular user to gain administrative privileges. Not long after, Manuel Kiesel from…

20.01.2026

Over the course of 2025, we performed several hundred security assessments for our clients. In each of these, security analysts must understand a new…

26.11.2025

NTLM is the legacy authentication protocol in Windows environment. In the past few years, I've had the opportunity to write on this blog about NTLM…

Compass Security Blog - Offensive Defense

From Enumeration to Findings: The Security Findings Report in EntraFalcon

WinGet Desired State: Initial Access Established

From Folder Deletion to Admin: Lenovo Vantage (CVE‑2025‑13154)

Continuous Learning – Inside our Internal Security Training

NTLM Relaying to HTTPS

Calendar

FH OST - Kontaktgespräche 2026

News

Vulnerability in Lenovo Vantage