BlackAlps 2019

The event features cyber security experts from Switzerland and abroad. Besides tech talks there are also workshops such as the hands-on security lab with the Compass Hacking-Lab®.

Black Alps is a non-profit organization founded in 2017 whose main event will be the organization of Black Alps conferences.

BlackAlps is supported by HEIG-VD in Yverdon-les-Bains and from Y-Parc (compotence centre for cyber security, medtech and robotics). Compass Security is again sponsor this year.


Program of November 7/8, 2019

  • Track "Attacks": latest attacks, attack techniques and research in vulnerabilties
  • Track "Lessons Learned": experience reports
  • Workshops: deepen your knowledge
  • CTF: attack and defend computer systems in a lab (free entrence)
  • Networking: expand your network


One highlight is the Hacking-Lab Workshop by Nicolas Heiniger and Sylvain Heiniger. They will introduce the participants to numerous challenges in Hacking-Lab® 2.0 and show how to exploit vulnerable web applications. 

The workshop will take place on Friday at 2 pm.


Please find more details on







Sicherheitsrisiken erkennen und reduzieren

Im «KMU Magazin» gibt Security Analyst Fabio Poloni Tipps, wie KMU sich gegen Cyberangriffe wappnen können.  Read more

Vulnerability in the Windows Task Scheduler

Sylvain Heiniger identified a vulnerability in the Windows Task Scheduler. Read more

Ransomware-Attacke: Datendiebe erpressen Schweizer Unternehmen

Die Schweizer Herstellerin von Schienenfahrzeugen Stadler Rail AG wurde Opfer einer Cyber Attacke. Das Vorgehen der Angreifer sei typisch, sagt... Read more


Compass Security Blog

Relaying NTLM authentication over RPC

Since a few years, we - as pentesters - (and probably bad guys as well) make use of NTLM relaying a lot for privilege escalation in Windows networks. In this article, we propose adding support for... mehr

Reversing a .NET Orcus dropper

In this blog post we will reverse engineer a sample which acts as downloader for malware (aka a “dropper”). It is not uncommon to find such a downloader during DFIR engagements so we decided to take a... mehr