2025-06-19 –, Classroom 1 workshops
In the ever-evolving landscape of cybersecurity, automation has become a crucial tool in any security researcher's arsenal. While there's no shortage of open-source and commercial information security tools, the ability to write your own or modify existing ones remains an invaluable skill. This workshop aims to bring attendees up to date on various automation techniques for accomplishing cybersecurity tasks.
The workshop covers the techniques to cover a broad spectrum of security areas, such as vulnerability discovery & exploitation, network monitoring & security, and modifying existing tools. Targeted at security professionals—including penetration testers, bug hunters, red teamers, threat researchers, SOC analysts, and network/DevOps professionals—the workshop demonstrates and teaches how security tasks can be automated easily.
Training Outline
Tool & Techniques for Security Automation
- Network Security
- Web Security Automation
- Malware Analysis Automation
- Automating Cloud Security Tasks
- Automating Security Tasks using Cloud
- Analyzing Custom Protocols & Services
- Leveraging LLM and GenAI for Exploring the Unknown
Writing Your Own Tools
- Developing the Automation Mindset
- Basics of Security Automation
- Mind Map for Writing Your Own Tools
- Writing Tools for Threat Intelligence
Extending Existing Tools
- Writing Nmap NSE Scripts
- Writing Nuclei Templates
- Extending Burp/mitmproxy
Rahul (c0dist) currently leads the Cyber Threat Intelligence (CTI) Engineering team at Fortinet. With over a decade of experience in aggregating and contextualizing various threats, he's a seasoned threat intelligence practitioner. Rahul has presented and conducted workshops at several international conferences, including Nullcon, PHDays, c0c0n, and BSides. He's also contributed to multiple open-source security projects, such as the SHIVA spampot and Detux Linux sandbox. Rahul's passions lie in information security, automation, human behavior, and—of course—breaking things.