BlackAlps 2019

The event features cyber security experts from Switzerland and abroad. Besides tech talks there are also workshops such as the hands-on security lab with the Compass Hacking-Lab®.

Black Alps is a non-profit organization founded in 2017 whose main event will be the organization of Black Alps conferences.

BlackAlps is supported by HEIG-VD in Yverdon-les-Bains and from Y-Parc (compotence centre for cyber security, medtech and robotics). Compass Security is again sponsor this year.


Program of November 7/8, 2019

  • Track "Attacks": latest attacks, attack techniques and research in vulnerabilties
  • Track "Lessons Learned": experience reports
  • Workshops: deepen your knowledge
  • CTF: attack and defend computer systems in a lab (free entrence)
  • Networking: expand your network


One highlight is the Hacking-Lab Workshop by Nicolas Heiniger and Sylvain Heiniger. They will introduce the participants to numerous challenges in Hacking-Lab® 2.0 and show how to exploit vulnerable web applications. 

The workshop will take place on Friday at 2 pm.


Please find more details on







Vulnerability in totemodata

Fabio Poloni identified an XSS vulnerability in totemodata®. Read more

Gesundheitswesen: Ein leichtes Ziel für Hacker

«Heime & Spitäler» ist das Fachmedium für Entscheidungsträger von Schweizer Heimen und Spitäler. In der aktuellen Ausgabe beschreibt Compass Security... Read more

Vulnerablitity in VeloCloud™

Silas Bärtsch identified a vulnerability in VeloCloud™ (VMware), that allows a VeloCloud standard admin user to access user information of other... Read more


Compass Security Blog

Hacking Tools Cheat Sheet

Everyone knows: cheat sheets are cool! They are very useful if you already know the basics about a topic but you have to look up details when you are not sure about something. mehr

Introducing Web Vulnerabilities into Native Apps

Mobile applications nowadays make heavy use of WebViews in order to render their user interfaces. Frameworks such as PhoneGap / Apache Cordova are even used to implement most of the application's... mehr