Learning from practitioners - Compass Security teaches at the HWZ

For the third time, Compass Security co-founder Ivan Bütler is involved in the CAS Digital Risk Management course at the HWZ Hochschule für Wirtschaft Zurich. Ivano Somaini, head of the Zurich region, is also a lecturer in the course, which starts in February.

The part-time course focuses on risks in the areas of infrastructure and reputation as well as in the area of markets and business models, which are to be addressed specifically in connection with digitalization.

Key Content

  • Cyber Security
  • Hacking
  • Social Engineering
  • Data Privacy
  • Shitstorms and Reputation Campaigners
  • Personal Reputation Management
  • Net Neutrality
  • Risk Insurance


Offensive Defense

Ivan Bütler says, „You have to practice to really be able to do it.“ He and his business partner Philipp Sieber structure their lessons according to this principle. In the Hacking-Lab, the online platform for ethical hacking, students learn how to detect and prevent attacks.

Human Weakness

Ivano Somaini has been working in social engineering for many years. He shows how social aspects can be exploited with ingenious attacks and how the human factor increasingly comes into the focus of attackers. "As a rule, people are good-natured. A social engineer exploits their helpfulness, fear and curiosity."


In these two teaching blocks, the participants immerse themselves in the methods, tools and tricks of attackers. In addition to theory, Compass Security imparts practical know-how and an understanding of current attacks and defense strategies. 


Detailed information on the CAS Digital Risk Management course can be found at the HWZ website: https://fh-hwz.ch/produkt/cas-digital-risk-management/ 




https://pixabay.com/de/internet-sicherheit-technologie-3374252/  /  May 2018


Security Training: Social Engineering

In the 2-day course (in German) from June 9/10, 2020, you will get to know and understand the methods, tools and tricks of social engineering. Read more

it-sa 2020

Europas führende Fachmesse für IT-Sicherheit findet vom 06. - bis 08. Oktober 2020 im Messezentrum Nürnberg (DE) statt. Reservieren Sie bereits heute... Read more


Compass Security Blog

Relaying NTLM authentication over RPC

Since a few years, we - as pentesters - (and probably bad guys as well) make use of NTLM relaying a lot for privilege escalation in Windows networks. In this article, we propose adding support for... mehr

Reversing a .NET Orcus dropper

In this blog post we will reverse engineer a sample which acts as downloader for malware (aka a “dropper”). It is not uncommon to find such a downloader during DFIR engagements so we decided to take a... mehr