BEGIN:VCALENDAR VERSION:2.0 PRODID:-//pretalx//pretalx.com//bsides-canberra-2025//speaker//AVXWYZ BEGIN:VTIMEZONE TZID:AEST BEGIN:STANDARD DTSTART:20000326T040000 RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3;UNTIL=20050326T170000Z TZNAME:AEST TZOFFSETFROM:+1100 TZOFFSETTO:+1000 END:STANDARD BEGIN:STANDARD DTSTART:20060402T040000 RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060401T170000Z TZNAME:AEST TZOFFSETFROM:+1100 TZOFFSETTO:+1000 END:STANDARD BEGIN:STANDARD DTSTART:20070325T040000 RRULE:FREQ=YEARLY;BYDAY=4SU;BYMONTH=3;UNTIL=20070324T170000Z TZNAME:AEST TZOFFSETFROM:+1100 TZOFFSETTO:+1000 END:STANDARD BEGIN:STANDARD DTSTART:20080406T040000 RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4 TZNAME:AEST TZOFFSETFROM:+1100 TZOFFSETTO:+1000 END:STANDARD BEGIN:DAYLIGHT DTSTART:20000827T030000 RRULE:FREQ=YEARLY;BYDAY=4SU;BYMONTH=8;UNTIL=20000826T170000Z TZNAME:AEDT TZOFFSETFROM:+1000 TZOFFSETTO:+1100 END:DAYLIGHT BEGIN:DAYLIGHT DTSTART:20011028T030000 RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20071027T170000Z TZNAME:AEDT TZOFFSETFROM:+1000 TZOFFSETTO:+1100 END:DAYLIGHT BEGIN:DAYLIGHT DTSTART:20081005T030000 RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=10 TZNAME:AEDT TZOFFSETFROM:+1000 TZOFFSETTO:+1100 END:DAYLIGHT END:VTIMEZONE BEGIN:VEVENT UID:pretalx-bsides-canberra-2025-DCEZKT@pretalx.com DTSTART;TZID=AEST:20250927T100000 DTEND;TZID=AEST:20250927T105500 DESCRIPTION:Whitebox assessments are like unlocking the entire game map\, a nd it's totally up to you to decide what’s worth exploring. Understandin g how to decompile apps and navigate them will equip you with the skills t o uncover vulnerabilities that are often overlooked and collect those coin s.\n\nWe’ll guide you through picking the right targets\, decompiling Ja va bytecode\, identifying critical routes\, and running effective scanners . During this talk we’ll demonstrate vulnerabilities we have found with these techniques\, and give you all the tools you need to get started on y our journey along the rainbow road of Jira and Confluence plugins. Basical ly\, this is our power-up JAR gift to you. \n\nWhether you’re a seasoned security plumber (internal security team\, bug bounty hunter\, hobbyist) or just starting out\, this interactive session will level up your ability to turn bytecode into bounties. DTSTAMP:20260603T234351Z LOCATION:Off-Main Track SUMMARY:Reversing Bytecode into Bounties: Uncovering Vulnerabilities in Jir a and Confluence Plugins - Giuliana De Bellis\, Jamal Hopwood URL:https://pretalx.com/bsides-canberra-2025/talk/DCEZKT/ END:VEVENT END:VCALENDAR