Beer-Talk #1 in Vaduz: Lazy ways to own networks

Not every attack technique has to be fancy. Often simple methods are successful too. We will show you some of them at our frist Beer-Talk in Vaduz, on September 27, 2018.

This Beer-Talk is divided in a technical presentation (in english) of about 45 minutes followed by discussions over a light meal. The participation is free but a registration is required.

Topic

Compass Security performs many internal network security tests, so called "penetration tests". Most of the time, when working on a company internal network, we don't need any fancy attack technique or custom exploit. There exist much easier methods to get an initial foothold in the network and escalate your privileges in the Active Directory.

This Beer-Talk is a tale of lame ways to let your network be compromised. Anonymized examples and anecdotes from real engagements will be discussed. Some technical details as well as applicable remediations will be provided.

The easiest methods are often sufficient to compromise even big corporations, don't let yours be one of them!

Speaker

Nicolas Heiniger is a happy husband and father of 3 kids. After some years in public health and at an IT service provider, he's now working at Compass Security where he is most interested in web applications and penetration testing. At night, he hacks for fun and bounty.

Date/Place

Thursday, September 27, 2018, start at 18.00

Registration

Come meet us, enjoy the talk and the free beer and snack.

Please register with your first name, surname and enterprise name with the subject "Vaduz" at team.csch@compass-security.com

Registrations accepted until Tuesday, September 25, 2018, 12.00

 

 

Image reference:

aktuelles

Schwachstelle in ownCloud iOS Applikation

Sylvain Heiniger hat in der ownCloud iOS Applikation eine Cross-Site Scripting Schwachstelle identifiziert. weiterlesen

Schwachstelle im Atmosphere Framework

Lukasz D. hat eine XSS-Schwachstelle im Atmosphere Framework identifiziert. weiterlesen

Schwachstellen in OfficeSpace

Stephan Sekula hat Schwachstellen in der OfficeSpace Gebäudemanagement-Software identifiziert. weiterlesen

ArCHIV

Compass Security Blog

Area41 2018 Wrap Up

Introduction Last Friday and Saturday (15./16. June 2018), the 6th edition of the security conference Area41 (formerly Hashdays, https://area41.io/) organized by DEFCON Switzerland... weiterlesen

Compass at Area41 2018

We are at the Area 41 conference! This IT Security Conference is happening on the 15/16th of June in 2018 in Zürich. Compass Security supports this non-profit event as Platinum Sponsor. We’ll have a... weiterlesen

ZUM BLOG