Come and Celebrate with Us

Cybersecurity - 25 years ago, nobody knew this word. We were still outsiders with our business idea. Today, we cannot do without IT security. The impact on all our lives is too great.

At our anniversary event, we will be touching on topics that have been with us for a quarter of a century, as well as a topic that is rather new in the field of cybersecurity. And quite fascinating!

And we will take a close look  when our "analog hacker" is up to mischief. 

Join us on Friday, June 28, 2024 and raise a glass to 25 years of Compass Security.


Workshops

Choose your favourites from four different workshops. Whether you want to deepen your knowledge on the topic, learn about new topics, or get straight down to business - our teams will make sure that it's worthwhile for everyone.

What is it about?

Open Source Intelligence (OSINT) tips and tricks criminals don't want you to know. Experience hands-on open source tactics and techniques to gain more information than the one visible on the surface. Train your mindset and dive with us in the ocean of online information.

For this red-hot topic, it doesn't matter if you are already a Sherlock Holmes or a Watson - Everybody is invited to participate!

What you will learn

This workshop will enable you to

  • search the Internet effectively including hard-to-find, deleted information

  • leverage the potential of OSINT in your everyday research work

  • apply OSINT methodology during an investigation

  • expand the scope of research using OSINT tools

  • be aware of the dangers of posting online

 
Your trainerElisa Nannini, Roman Schneider, Misha Cattaneo
LanguageEnglish

What is it about?

Active Directory Certificate Services misconfigurations are often exploited by adversaries to compromise entire corporate infrastructures. We will not only teach you the theoretical background, but you will also get your hands dirty and carry out the real-world attack on your own.

Let’s take over an enterprise network to understand effective counter measure

What you will learn

In this session, you will learn

  • the very details of Active Directory security and particularly the concepts of the AD Certificate Services

  • how to identify some common vulnerabilities in an internal network

  • abuse shortcomings in enterprise networks to take over an infrastructure

 
Your trainerEmanuel Duss, Patrick Vananti, Matthias Boos, Bruno Braga
LanguageEnglish

What is it about?

Dive into the captivating world of web application security! We'll delve into the realm of Cross-Site Scripting (XSS) and learn how to hijack online accounts. Discover the essentials of the web and learn how to both exploit and defend against XSS attacks effectively in a hands-on approach.

Embark on a journey to safeguard the online world.

What you will learn

In nearly 101 min. you will

  • get a broad perspective of how the web works

  • learn what cross-site scripting (XSS) is, how to exploit it and how to defend against it

  • apply the acquired knowledge to find XSS vulnerabilities and exploit them

 
Your trainerAntonio De la Torre, Mirco Stäuble, Michael Häseler
LanguageEnglish

What is it about?

Do you know where your wallet is at the moment? Or your cell phone? And is it just a coincidence that the watch on the wrist of the likeable magician opposite you looks exactly like yours?

Enjoy an entertaining and baffling act of finest pickpocketerie.

What you will learn

This show will teach you:

  • Awareness in protection of your personal belongings

  • Relation and potential of social engineering in combination with pickpocketing towards cyber attacks

  • Threat of authentication or access control bypasses though theft

 
Your entertainerShow pickpocketing at the highest level is Giovanni Alecci's specialty.
LanguageActions speak louder than (english) words.

Program

Friday, June 28, 2024

08.30 - 09.30 Welcome Coffee Foyer Auditorium
09.30 - 09.50 Welcome Speech Auditorium
09.50 - 11.30 Session 1 Auditorium and conference rooms
11.30 - 13.00 Lunch Restaurant (external)
13.00 - 14.40 Session 2 Auditorium and conference rooms
14.40 - 15.10 Afternoon Break Foyers on floors 2/3/4
15.10 - 16.50 Session 3 Auditorium and conference rooms
16.50 - 17.05 Closing Auditorium
17.05+ Have a beer or two Foyer Auditorium
  • Please bring your own laptop (incl. power cable) for practical exercises.
  • You will also need an internet connection (WiFi is available on site) and an updated browser (Chrome, Edge or Safari). 

Location

Registration

Registration deadline is June 7, 2024. 

Limited number of places. Places will be given out on a first come, first served basis.
If room capacity does not permit the requested workshop, we reserve the right to assign you to the fourth workshop.

Photos are taken at our event. These are mainly used for internal documentation. Some can be published on our LinkedIn account.


I am happy to be part of the Compass anniversary event. I have reserved Friday, June 28, 2024.

We very much look forward to your participation.


If you have any questions, please contact us on team(at)compass-security.com or +41 58 510 36 00.