Penetration Tests

Penetration Tests

Penetration Tests

Assuming the role of an attacker, we test your devices, networks, services, and applications for vulnerabilities. Using social engineering and red teaming we test the behavior and processes of the whole organization. read more

Security Reviews

Security Reviews

Security Reviews

Experienced IT analysts support you with a second opinion on security concepts and if requested, test the structure, configuration, and source code of your solution. read more

Incident Response

Incident Response

Incident Response

Our experts help in coordinating incident and emergency measures as well as with the processing of data for use in court. Additionally, we provide quick and accessible research into the cause of incidents. read more

Security Trainings

Security Trainings

Security Trainings

Benefit from our analysts' knowledge of penetration testing, network analysis, digital forensics, secure mobile apps, and other applications, or choose to receive training in our specially created lab. read more

FileBox

FileBox

FileBox

FileBox is a solution for both secure file transfer and secure file storage. It provides you with the ability to securely exchange documents. read more

Hacking-Lab

Hacking-Lab

Hacking-Lab

Hacking-Lab is an online ethical hacking, computer network and security challenge platform, dedicated to finding and educating cyber security talents. read more

CALENDAR

Compass Training "Social Engineering" in Zürich

Im 2-Tages-Seminar vom 12./13. Juni 2018 lernen Sie die Methoden, Tools und Tricks des Social Engineerings kennen und verstehen. read more

Compass Training "Internet of Things Security" in Zürich

Im 2-Tages-Seminar vom 26./27. Juni 2018 holen Sie sich das Rüstzeug, um IoT Devices sicher zu konzipieren, zu evaluieren und zu betreiben. read more

ALL DATES

NEWS

Design vulnerability in Microsoft Intune

Stephan Sekula has identified a design vulnerability in Microsoft Intune that may allow getting access to confidential information. read more

Vulnerability in Microsoft Intune

Stephan Sukula identified a design vulnerability in Microsoft Intune that allows bypassing the app PIN protection. read more

Vulnerability in Zimbra Collaboration Suite

Damian Pfammatter and Alessandro Zala identified an XSS vulnerability in Zimbra Collaboration Suite. read more

ARCHIVES

Compass Security Blog

Insomni’hack 2018 Wrap-Up

As every year, some Compass Security Analysts travelled to Geneva and attended the Insomni’hack conference and it’s enjoyable CTF. Conference Read more about the two day conference here in this post:... read more

Insomni’hack 2018 – guessflag

For this task, we had SSH access to the server guess.insomni.hack and the task was to read the flag in the /home/flag directory. We were able to get the flag without even solving the challenge 🙂... read more

ALL BLOG POSTS