Direct Links
english
deutsch

FileBox Login
Offene Stellen / Jobs
 

Publications

Overview

The files can be downloaded as pdf pdf

2009 Oct Compass Event - Security Evaluation of Crealogix CLX.Sentinel
2009 Oct Compass Event - Social Engineering Attacks
2009 Oct Compass Event - Compass expand NMAP by SCTP
2009 Oct Compass Event - 0-day Exploits: Are we powerless?
2009 Jul Pandora's Cyber Box
2009 June Social Engineering Test Cases
2009 May SCSII - Oracle Security
2009 May SCSII - Reverse Code Engineering
2009 May SCSII - WLAN Security
2009 May SCSII - VPN with Windows 7
2009 May SCSII - NFS
2009 May SCSII - Hacking Legal
2009 May SCSII - Anti-Virus Secrets
2009 May SCSII - ZFS
2009 May SCSII - Unix Security
2009 May SCSII - Lsrunase Supercrypt
2009 May SCSII - Observation Plugin
2009 May SCSII - Hacker Paragraph
2009 May SCSII - Internet Threats
2009 May SCSII - Raiffeisen E-Banking Security
2009 May SCSII - Windows Update
2009 May SCSII - Cybercrime Today
2009 May SCSII - FastFlux / ZeuS
2009 May SCSII - DECT Hacking
2009 May SCSII - DriveBy Infection
2008 Nov XSS Shell
2008 Nov Smartcard APDU Analysis
2008 Nov Teredo - Ipv6 Security
2008 Nov Vmware Device Driver Exploit
2008 Nov E-Banking Trends
2008 Nov Cross Site Request Forgery
2008 Oct Internet in China - The Great Firewall
2008 Aug Summary Blackhat / Defcon 2008
2008 May Malware Distribution
2008 Apr Web 2.0 Event - Slides
2008 Feb Summary Blackhat / Defcon 2007
2008 Feb Breaking TOR Anonymity
2007 Nov Hash Injection Attacke
2007 Oct Wireless Drive-By Hacking
2007 Oct DNS Attacken - Advanced Methoden
2007 Oct Verseuchung von Viren über E-Bay Hardware
2007 Oct Browser Plugins und Extensions - the Hackers View
2007 Oct Kerberos Session Hijacking Attacke
2007 Oct Tempest Attacke - Abhören des LCD Screen
2007 Aug Solaris10 into Active Directory Integration
2007 Jun U3 USB Stick (In-)Security
2007 Jan Universal PDF XSS
2006 Dec Hardening Checkliste Windows 2003 Intranet Basis
2006 Dec Hardening Checkliste Exchange 2003
2006 Dec Hardening Checkliste Windows XP
2006 Dec Hardening Checkliste IIS 6.0 im Intranet
2006 Dec Hardening Checkliste Microsoft SQL Server 2000
2006 Dec Hardening Checkliste ISA Server 2004 Intranet
2006 Dec Summary Blackhat / Defcon 2006
2006 Oct Skype Trojaner
2006 Oct BHO (Browser Helper Object) Angriff
2006 Oct Shellcode Proxying/CoreImpact
2006 Oct Oracle Datenbank Sicherheit
2006 Oct Static/Dynamic Payload Analysis
2006 Oct IE Fuzzing and Microsoft Incident Handling
2006 Jun Phishing-Frühwarnsystem
2006 May Ratgeber zu Solaris-Ermittlungen
2006 Mar Harddisk ATA Security
2005 Nov Time Stamping Authority
2005 Nov Terminal Server Break-Out
2005 Nov Advanced Phishing
2005 Nov MELANI
2005 Nov Hackerspuren in Web Applikationen
2005 Nov VoIP Angriffe
2005 Oct Forensik in E-Business-Anwendungen
2005 Jul Bedrohungen Web-Applikationen
2005 Feb Securing Wireless Networks
2004 Dec 24-Stunden-Spiel "Die Computer-Knacker"
2004 Nov Sicherheit bei automatisierten Windows Installationen
2004 Oct Covert Channel - Inside Out
2004 Oct Computerforensik und -kriminalität
2004 Aug .NET Basics & Security
2004 Apr Inside-Out Attacks
2004 Apr Spyware Analysis
2004 Apr Windows Evidence Gathering
2004 Apr Überwachung elektronischer Kommunikation
2004 Apr J2EE Trojaner
2004 Apr Windows 2003 - Security Hints
2004 Mar Chrooting Unix Services (Apache, MySQL, Tomcat)
2003 Sept Laptop Security
2003 Sept Kernel Hooks und Spy-Detection
2003 Aug Argus PitBull B1 Erläuterungen
2003 Jul Cross Site Scripting Attacken
2003 Jun TCP/IP Gender Ganger
2003 May Questions to Penetration Test
2003 Apr LASEC SSL Sicherheitslücke
2003 Mar Cross Site Tracing Schwachstelle in Web Anwendungen
2003 Mar Linux ptrace Sicherheitslücke
2003 Mar SSL Sicherheitslücke - Timing Attack
2003 Mar Präsentation zum Thema Security Assessment
2003 Mar Rechtliche Aspekte von Security Assessments
2003 Jan Finjan SurfinGate V5.6 Security Considerations
2003 Jan Session Fixation Schwachstelle in Web Anwendungen
2003 Jan Webservices Sicherheitsüberlegungen
2003 Jan VPN Gefahrenanalyse
2003 Jan Shatter Attack
2003 Jan Security von Wireless Networks
2002 Oct Java Datenstrom Inspection
2002 Oct File-Type Analyse (Content Filter)
2002 Jun Hardening Windows NT
2002 Feb Leitfaden Penetration Tests isb.admin.ch
2001 Jun Hardening Oracle
2001 Mar Hardening Solaris
2000 Oct Hardening WebSphere
1999 Nov Leitfaden Tiger-Team Services FGSEC

News

Compass' Testing Modules
1/27/10 - Compass Security has created the document "Testing Module" describing the typical testing scenarios

Workshop on Mobile Security at MCTA 2010
1/11/10 - Marco Di Filippo, Regional Director Germany of the ICT security service provider Compass Security AG (www.csnc.ch) informs in a workshop about the risks of mobile communication tools. This will be held on 01 February at the 10th Conference "Mobile Communications Technologies and Applications" (MCTA) at the University of Augsburg.

Loophole detected in "Camtasia Studio"
11/30/09 - Michael Schmidt, Security Analyst at Compass, has analysed a flash application which has been created with the software "Camtasia Studio" by TechSmith.

Compass Event 2009
10/27/09 - On 15 October 2009, the "Compass Event" took place in the auditorium of the HSR University of Applied Sciences in Rapperswil/Switzerland.

Cyber terrorism: German infrastructure highly vulnerable
9/28/09 - Compass Security shows how easy it is to compromise power, internet and telecommunication networks in Germany.