01.07.2019 / (IoT) Safety & Security – Challenges in the Embedded Market in München

Presentation: “How (not) to trust your devices” by Senior Penetration Tester, IT-Forensiker & Security Researcher Rafael Scheel.

22.05.19 / IT-Sicherheitskongress of BSI in Bonn

Presentation about “PowerShell in der Post Exploitation – Grundlagen, Angriffe, Forensik, Verteidigung”. Speaker: Senior Penetration Tester & Security Consultant Frank Ully.

Oneconsult present at the SWISS CYBER STORM in Bern on October 30, 2018

Welcome to the Oneconsult booth!
→ Win a hak5 field kit
→ Hack (not chop!) chocolate – you have to crack the safe and earn it!
→ Presentation by COO Tobias Ellenberger at the SCS on “The 3 most important aspects of (non-)successful incident response”.

[more]

18-06-18 / Hacking Day 2018 Digicomp

«Bypass all the things – effective application whitelisting»

Speech by Branch Manager Bern and Senior Penetration Tester Yves Kraft on Hacking Day 2018 at Digicomp Zurich was recorded and will be published in Oeconsult’s youtube channel

14-06-2018 / ZHAW / Data Protection and Data Security Compliance

Data protection – top topic in many board meetings!
Data protection and data security – the topics are not only since GDPR in every mouth. Digitalization and technical developments require a new understanding of data handling. [more information about the event in German]

06-Mar-2018: OSSTMM presentation at the ISSS Security Lunch in Zurich

The Open Source Security Testing Methodology Manual (OSSTMM) is ideal for planning, carrying out and documenting technical security audits. Yves Kraft, an experienced OSSTMM trainer, will focus on the measurability and comparability of OSSTMM-compliant audits in his presentation.

Further information and registration (presentation will be in German):
https://www.isss.ch/veranstaltungen/2018/security-lunch-2018-03-06/

18-01-2018: Security Forum Brandenburg: Blockchain – sicher? (Oneconsult speech)

Frank Ully (Penetration Tester & Security Consultant, Oneconsult Deutschland GmbH) explains in his exciting presentation in German the basics of Blockchain, names application areas and highlights the security aspects.

Further information and registration: https://www.security-management.de/security-forum-anmeldung/

18-01-2018: SIGS – IT Security Strategy 2018: Phishing – one click away from disaster (Oneconsult speech)

by Severin Wischmann

While operating systems and their default software like browsers getting more and more secure, hackers rely on users being the vulnerability. Social engineering, the art of creating a scenario where a person behaves as the attacker intends him/her to do, is used in various scenarios, such as the so-called CFO fraud or a phishing campaign. [more]

18-10-2017: Visit us at the Swiss Cyber Storm 2017 (Lucerne)

Cyber security expert Oneconsult AG is again sponsoring the international IT security conference Swiss Cyber Storm, taking place on 18 October 2017 in Lucerne. Visit us at our booth and find out more about our core services tailored to your specific requirements: penetration tests / ethical hacking (incl. real-life APT tests), ISO 27001 security audits and incident response & IT forensics (24 h x 365 days). [more]

18-10-2017: Schlossgeflüster, «You have been hacked!» (Workshop in German)

with Yves Kraft (Branch Manager Bern, Senior Penetration Tester & Security Consultant at Oneconsult AG)

«You have been hacked!» – Why it can hit anyone and what you can do against it [more]

Das Grundrauschen in unserer Umgebung – Reverse Engineering von Funksignalen mit Software Defined Radio (SDR) (Video Oneconsult Vortrag)

In this talk in German also held at the Digicomp Hacking Day 2017, Yves Kraft (Branch Manager Bern, Senior Penetration Tester & Security Consultant at Oneconsult AG) illustrates how radio signals of everyday objects are analyzed. [more]

16-05-2017: Hacking Day 2017 (Digicomp, Zurich) – Oneconsult presentations

At Hacking Day 2017, Oneconsult employees Fabian Gonzalez und Yves Kraft will present three interesting, hands-on topics: “Auswirkungen von physischen Angriffen – DirectMemory-Attacken”, “Switzerland’s next Bug Bounty Hacker «Hands-On»” and “Das Grundrauschen in unserer Umgebung – Reverse Engineering von Funksignalen mit Software Defined Radio”.

Smart TV Hacking (Video: Oneconsult Talk at EBU Media Cyber Security Seminar)

In this presentation at the Media Cyber Security Seminar of the European Broadcasting Union (EBU), Rafael Scheel (Senior Penetration Tester & Security Researcher at Oneconsult AG) gives an introduction to IoT cyber security and shows in a live hacking demo an attack which allows to remotely takeover bulks of smart TVs over the TV stream signal. [more]

04-04-2017: SIGS (Basel) – Systematic password cracking: smart approaches easily explained (Oneconsult workshop)

by Immanuel Willi

Almost weekly, we see news about spectacular “breaches” in which cybercriminals steal vast amounts of user data, such as user names, e-mail addresses and password hashes. [more]

30-03-2017: SIGS (Bern) – How to Build Secure Networks (Oneconsult Whiteboard Session)

by Yves Kraft

How do enterprise networks get attacked nowadays? Which attack vectors do hackers use to get data? What are effective measures? Which security mechanisms can be easily bypassed? [more]

10-11-2016: DeepSec IDSC 2016 Europe (Vienna) – Oneconsult Talk

“badGPO – Using GPOs for Persistence and Lateral Movement” by Yves Kraft and Immanuel Willi: deepsec.net

19-10-2016: Hack.lu 2016 Security Convention / Conference (Luxembourg) – Oneconsult Talk

“badGPO – Using GPOs for Persistence and Lateral Movement” by Yves Kraft and Immanuel Willi: hack.lu

17-09-2016: BSides Zurich Conference – Oneconsult Talk

“badGPO – Using GPOs for Persistence and Lateral Movement” by Yves Kraft and Immanuel Willi: bsideszh.ch

page 1 of 2