BSidesLuxembourg 2026

Version 0.87 May 8, 2026

We released a new schedule version!

We have a new session: “Good things can happen at conferences” by Lisi Hocke.

Version 0.86 May 6, 2026

updated CTF description

Version 0.85 May 6, 2026

Fixed confusing room names
Created rooms for the CTF session for CTF

We have new sessions!

• “BSides Capture the Flag” by Unnamed speaker
• “BSides Capture the Flag” by Unnamed speaker
• “BSides Capture the Flag” by Unnamed speaker

We have moved a session around: “BsidesLuxembourg 2026 CTF Walkthrough Session” by MUHAMMED WASEEM VILLAN (CTF players room (lift to level 3 room #5 6+8th or level 4 room #2 7th) → C1.03.05: lift to level 3 room #5)

Version 0.84 May 6, 2026

We released a new schedule version!

Version 0.83 May 6, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Blackhoodie training - Introduction to Linux Memory Forensics” by Sonia Seddiki (CTF players room (lift to level 3 room #5 6+8th or level 4 room #2 7th) → C1.03.10: lift to level 3 room #10)
• “Blackhoodie training - Introduction to Linux Memory Forensics” by Sonia Seddiki (CTF players room (lift to level 3 room #5 6+8th or level 4 room #2 7th) → C1.03.10: lift to level 3 room #10)

Version 0.82 May 5, 2026

We released a new schedule version!

We have a new session: “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli.

Version 0.81 May 5, 2026

We released a new schedule version!

We have a new session: “The Always-On Purple Team: Going Full Spectrum with AI-Powered Red Ops” by Jeroen Vandeleur.

Version 0.80 May 4, 2026

We renamed the rooms to make it easier to know where to go

Version 0.79 May 4, 2026

We released a new schedule version!
Testing room ID variations

Version 0.78 May 4, 2026

We released a new schedule version!
New rooms ID

Version 0.77 May 4, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “The Forgotten Fingerprint: DNS Based OSINT Techniques for Product & Service Discovery” by Rishi (@rxerium) (May 7, 2026, 5 p.m. → May 7, 2026, 4:20 p.m.)
• “Turnkey Code – Enhancing Secrets Management in Large Scale Organizations” by Diogo Lemos (May 7, 2026, 4:20 p.m. → May 7, 2026, 4:55 p.m.)

Version 0.76 May 4, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Startup Security 2020: Aged Like Wine or Milk?” by Guillaume Ross (May 8, 2026, 3:40 p.m. → May 8, 2026, 2 p.m.)
• “Digital risks, threat models, and empathy: trainings that empower” by Łukasz Król (May 8, 2026, 2 p.m. → May 8, 2026, 3:40 p.m.)

Version 0.75 May 4, 2026

We released a new schedule version!

Sadly, we had to cancel a session: “From CAN Frames to Corporate Firewalls: Life of an Automotive Security Researcher” by Hrishikesh Somchatwar

Version 0.74 May 4, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Digital risks, threat models, and empathy: trainings that empower” by Łukasz Król (May 7, 2026, 4:55 p.m. → May 8, 2026, 2 p.m.)
• “What You See Is (Not) What You Get” by Xavier Mertens (May 8, 2026, 2 p.m. → May 7, 2026, 4:55 p.m.)

Version 0.73 May 2, 2026

We released a new schedule version!

We have a new session: “Beyond the Prompt: A Framework for Agentic AI Attack and Defense Strategies” by Jeremy Snyder.

We have moved a session around: “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli (May 8, 2026, 4:20 p.m. → May 8, 2026, 5 p.m.)

Version 0.72 May 1, 2026

We released a new schedule version!

We have a new session: “Infostealer Emulation: Validating Detection of Credential Theft” by Filipi Pires.

Version 0.71 April 30, 2026

We released a new schedule version!

We have a new session: “Every Guardrail Everywhere All at Once: Designing and Testing Guardrails for LLM Applications” by Donato Capitella.

Version 0.70 April 30, 2026

We released a new schedule version!

We have a new session: “Security for AI: AIDR Bastion as open source LLM firewall / AI prompts reverse proxy” by Andrii Bezverkhyi.

Sadly, we had to cancel sessions:

• “Breaking the Control Plane: Exploiting MCP Servers in AI Workflows” by Yotam Perkal
• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli

Version 0.69 April 30, 2026

We released a new schedule version!

We have a new session: “Weaponizing PDF Files: Advanced Exploitation Techniques for Red Teams” by Filipi Pires.

Version 0.68 April 29, 2026

We released a new schedule version!

Version 0.67 April 29, 2026

We released a new schedule version!

We have a new session: “Threat Modeling in DevOps and Cloud using Card Games” by Christoph Niehof.

Version 0.66 April 29, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “CT(C)I-Driven detection against internal and external threats” by Ondrej Nekovar, Jan Pohl (May 7, 2026, 1:30 p.m. → May 7, 2026, 11:20 a.m.)
• “From Zero Trust to Trusted Advisor - Selling Security to Stakeholders” by Daniela Parker, Glen Sorensen (C1.02.05 : lift to level 2 room #5 → Main Stage)
• “OpenTide: From Raw Intelligence to Structured Threat-Informed Detections” by Remi Seguy (May 7, 2026, 11:15 a.m. → May 7, 2026, 1:30 p.m.)

Version 0.65 April 29, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Building a safe harbor for cybersecurity professionals” by Ondrej Nekovar (May 8, 2026, 1:50 p.m. → May 7, 2026, 1:55 p.m.)
• “Threat Modelling Starter Training” by Ralph Andalis (C1.05.12: Workshops and Stage (lift to level 5 room #12) → C1.03.06 : lift to level 3 room #6)
• “Kunai Workshop: Hands-on Linux Threat Detection” by Quentin JEROME (C1.03.06 : lift to level 3 room #6 → C1.05.12: Workshops and Stage (lift to level 5 room #12))
• “Secure Development Lifecycle Applied - How to Make Things a Bit More Secure than Yesterday Every Day” by Lisi Hocke (C1.03.06 : lift to level 3 room #6 → C1.05.12: Workshops and Stage (lift to level 5 room #12))

Version 0.64 April 29, 2026

We released a new schedule version!

We have new sessions!

• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli
• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli

Version 0.63 April 28, 2026

We released a new schedule version!

Version 0.62 April 27, 2026

We released a new schedule version!

We have a new session: “Ransom-ISAC LOCK STAR Initiative” by Ellis Stannard.

Version 0.61 April 23, 2026

We released a new schedule version!

We have a new session: “Building the Ultimate AI Firewall: Inside SovereignShield, IntentShield, and LogicShield” by mattijs moens.

Version 0.60 April 22, 2026

We released a new schedule version!

Sadly, we had to cancel a session: “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli

We have moved a session around: “Building Secure AI: Making Threat Modeling a Core Part of Development” by Diana Waithanji (May 8, 2026, 2:10 p.m., C1.05.02: Workshops and Stage (lift to level 5 room #2) → May 8, 2026, 3:40 p.m., Building D/room 2, Workshops and AI Security Village).

Version 0.59 April 21, 2026

We released a new schedule version!

We have a new session: “500 Incidents Later: Real-World Cyber Defense” by Federico.

Sadly, we had to cancel a session: “Threat Modelling Starter Training” by Ralph Andalis

Version 0.58 April 20, 2026

We released a new schedule version!

Version 0.57 April 20, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “What's Old is New: Exploiting Classic Vulnerabilities in GraphQL APIs” by Aleksa Zatezalo (May 7, 2026, 1:30 p.m. → May 8, 2026, 2:45 p.m.)
• “Trust and Traceability : developer observability in the AI powered SDLC” by Omar Rachid (May 8, 2026, 2:45 p.m. → May 7, 2026, 1:30 p.m.)

Version 0.56 April 20, 2026

We released a new schedule version!

We have a new session: “Trust and Traceability : developer observability in the AI powered SDLC” by Omar Rachid.

Version 0.55 April 18, 2026

We released a new schedule version!

We have a new session: “Killing Killnet” by Alex Holden.

Version 0.54 April 18, 2026

We released a new schedule version!

Version 0.53 April 17, 2026

We released a new schedule version!

We have a new session: “Building a "Mythos-ready" Security Program” by Catalin Tiganila.

Sadly, we had to cancel a session: “[Reboot] ML foundations for cybersecurity in 2026” by Pauline Bourmeau (Cookie)

Version 0.52 April 17, 2026

We released a new schedule version!

We have moved a session around: “Building Secure AI: Making Threat Modeling a Core Part of Development” by Diana Waithanji (May 8, 2026, 3:40 p.m., C1.05.12: Workshops and Stage (lift to level 5 room #12) → May 8, 2026, 2:10 p.m., C1.05.02: Workshops and Stage (lift to level 5 room #2)).

Version 0.51 April 17, 2026

We released a new schedule version!

We have new sessions!

• “How Secure is Secure Code Generation? Putting the LLMs to the Test” by Melissa TESSA
• “Lighting Talk: MISP Workbench” by Luciano Righetti

Version 0.50 April 16, 2026

We released a new schedule version!

We have moved a session around: “Why I Go to the Dark Web Every Day” by Alex Holden (May 8, 2026, 9:40 a.m. → May 8, 2026, 10:40 a.m.)

Version 0.49 April 10, 2026

We released a new schedule version!

Version 0.48 April 10, 2026

We released a new schedule version!

Version 0.47 April 7, 2026

We released a new schedule version!

We have new sessions!

• “Building a safe harbor for cybersecurity professionals” by Ondrej Nekovar
• “Turbocharged SOC: DetectFlow and other innovative Open Source tools released by SOCPrime for detection engineering” by Andrii Bezverkhyi
• “AI in Cybersecurity: How can we make best use of it?” by Diana Waithanji

Sadly, we had to cancel a session: “No API Required: State-of-the-Art Phishing Detection with Classical Machine Learning” by Pauline Bourmeau (Cookie)

We have moved a session around: “Malware Development for Ethical Hackers (Windows, Linux, Android)” by cocomelonc (Main Stage → C1.05.02: Workshops and Stage (lift to level 5 room #2))

Version 0.46 March 25, 2026

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “When LLMs Summarize Security Findings: The Tradeoffs You Can’t Ignore” by Andrey Lukashenkov (May 8, 2026, 11:20 a.m. → May 7, 2026, 3:40 p.m.)
• “The Agent Had a Plan—So Did I: Top Attacks on OWASP Agentic AI Systems” by Parth Shukla, Nagarjun Rallapalli (May 7, 2026, 3:40 p.m. → May 8, 2026, 11:20 a.m.)

Version 0.45 March 24, 2026

We released a new schedule version!

We have new sessions!

• “Building vs. Buying – A Tale of Developing an In-House SCA Tool” by Diogo Lemos
• “Turnkey Code – Enhancing Secrets Management in Large Scale Organizations” by Diogo Lemos

Version 0.44 March 19, 2026

We released a new schedule version!

We have a new session: “The High-Performance Fuel for Social Engineering (Now in AI Flavors!)” by Glen Sorensen.

Version 0.43 March 19, 2026

We released a new schedule version!

We have new sessions!

• “Magic-rs: A Memory-Safe, libmagic-Compatible File Type Detection Ecosystem” by Quentin JEROME
• “Panel Discussion: The future of Detection Engineering” by Diana Waithanji, Ondrej Nekovar, Remi Seguy, Andrii Bezverkhyi
• “Kunai: Open-Source Threat Detection on Linux” by Quentin JEROME
• “Kunai Workshop: Hands-on Linux Threat Detection” by Quentin JEROME
• “Comprehensive Framework for Analyzing and Detecting Malicious Browser Extensions” by Van Nguyen

Version 0.42 March 19, 2026

We released a new schedule version!

We have new sessions!

• “Mastering Incident Response with Kanvas” by Ardit Beu
• “From Code to Compromise: Turning modern day IDEs into attack vectors via malicious Extensions” by Debjeet Banerjee

Sadly, we had to cancel sessions:

• “Actionable CTI & Detection Engineering village”
• “PAMdemic: Privileged Account Management and how unauthorized access spreads faster than you think” by Melina Phillips

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Actionable CTI & Detection Engineering village” (May 8, 2026, 1:30 p.m. → May 8, 2026, 2:10 p.m.)
• “From Manual Hunt to Mass Detection: Weaponising Nuclei Against Phishing” by Rishi (@rxerium) (May 8, 2026, 11:20 a.m. → May 7, 2026, 5:40 p.m.)
• “ANALYZE & HUNT DPRK ATTACKS” by RAKESH KRISHNAN (May 6, 2026, 1:30 p.m., C1.03.06 : lift to level 3 room #6 → May 6, 2026, 4 p.m., C1.02.06: lift to level 2 room #6)

Version 0.41 March 18, 2026

We released a new schedule version!

We have a new session: “From Phishing to Mitigation: An Early-Career Incident Response” by Chris Beckman.

We have moved a session around: “Dismantle The Bomb” by Stijn Tomme (May 8, 2026, 1:35 p.m. → May 8, 2026, 1:30 p.m.)

Version 0.40 March 17, 2026

We released a new schedule version!

We have new sessions!

• “Your CTI Reports Are Useless Without Structure: From Unstructured Threat Intel to STIX Knowledge Graphs with LLMs and MCP server” by Antonio Formato
• “PAMdemic: Privileged Account Management and how unauthorized access spreads faster than you think” by Melina Phillips
• “Spyware: The Invisible Threat” by Julien vander Straeten
• “Curating Secure Software: The Art of Selecting Safe Dependencies” by Kadi McKean, Frithjof Hoffmann
• “Building Secure AI: Making Threat Modeling a Core Part of Development” by Diana Waithanji

Version 0.39 March 16, 2026

We released a new schedule version!

We have new sessions!

• “What's Old is New: Exploiting Classic Vulnerabilities in GraphQL APIs” by Aleksa Zatezalo
• “Ferrari without fuel: Exorcise GIGO out of Logs Management” by Stefano Amodio, Elliot Parsons
• “Leaky API Keys, Log Tampering, and Account Takeover” by Aleksa Zatezalo

We have moved a session around: “Oh Shit I Accidentally Breached an Organization (or many) using AI” by Panagiotis Fiskilis (May 7, 2026, 4:20 p.m., C1.05.12: Workshops and Stage (lift to level 5 room #12) → May 7, 2026, 5 p.m., Building D/room 2, Workshops and AI Security Village).

Version 0.38 March 15, 2026

We released a new schedule version!

We have a new session: “Oh Shit I Accidentally Breached an Organization (or many) using AI” by Panagiotis Fiskilis.

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “The Forgotten Fingerprint: DNS Based OSINT Techniques for Product & Service Discovery” by Rishi (@rxerium) (May 7, 2026, 5:20 p.m. → May 7, 2026, 5 p.m.)
• “No API Required: State-of-the-Art Phishing Detection with Classical Machine Learning” by Pauline Bourmeau (Cookie) (May 8, 2026, 2:10 p.m. → May 8, 2026, 11:20 a.m.)
• “Agnoletti & Trump: Gaming Playing to Win at Cyber” by Klaus Agnoletti, Ian Thornton-Trump (May 8, 2026, 11:20 a.m. → May 8, 2026, 2:10 p.m.)

Version 0.37 March 15, 2026

We released a new schedule version!

We have a new session: “CTF Prize ceremony (and raffles if any etc.)”.

Version 0.36 March 15, 2026

We released a new schedule version!

We have a new session: “Mapping the Invisible: Why System Cartography Matters for Security and Compliance” by Didier Barzin.

Version 0.35 March 14, 2026

We released a new schedule version!

We have new sessions!

• “Cloud & AI Security - Capture the Flag” by Nathan Mendes, Richard Hensen
• “Third Party Risk Management” by Jyoti Upadhyay, Parveen Rajpurohit

Version 0.34 March 13, 2026

We released a new schedule version!

Version 0.33 March 13, 2026

We released a new schedule version!

We have moved a session around: “The whistles go woo woo: SIEM alerts, threat detection and tuning unnecessary noise” by Melina Phillips (May 7, 2026, 5:20 p.m. → May 7, 2026, 5 p.m.)

Version 0.32 March 13, 2026

We released a new schedule version!

We have new sessions!

• “From Zero Trust to Trusted Advisor - Selling Security to Stakeholders” by Daniela Parker, Glen Sorensen
• “What Does Threat Modeling Solve for AI Security?” by Nathan Pembe

Sadly, we had to cancel a session: “Actionable CTI & Detection Engineering village”

We have moved a session around: “Not So hARMless: The Hidden World of Linux Packers and Detection Challenges” by Massimo Bertocchi (May 7, 2026, 2:40 p.m. → May 7, 2026, 2:45 p.m.)

Version 0.31 March 13, 2026

We released a new schedule version!

We have new sessions!

• “CT(C)I-Driven detection against internal and external threats” by Ondrej Nekovar, Jan Pohl
• “Agnoletti & Trump: Gaming Playing to Win at Cyber” by Klaus Agnoletti, Ian Thornton-Trump
• “When Filenames Become Attack Surfaces: Weaponizing NASA’s CFITSIO Extended Filename Syntax” by Adrian Denkiewicz

Sadly, we had to cancel a session: “Actionable CTI & Detection Engineering village”

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “No API Required: State-of-the-Art Phishing Detection with Classical Machine Learning” by Pauline Bourmeau (Cookie) (May 8, 2026, 2 p.m. → May 8, 2026, 2:10 p.m.)
• “Goodbye Purple Team, Hello Purple Bots” by Patrick Mkhael, Ralph El Khoury (May 7, 2026, 10:35 a.m., Building D/room 2, Workshops and AI Security Village → May 7, 2026, 3:40 p.m., Building D/room 1, Workshops and Detection Engineering village)

Version 0.30 March 13, 2026

We released a new schedule version!

We have a new session: “Gotta Contain 'Em All: Collaborative Incident Response Training Through Gaming” by Klaus Agnoletti, Glen Sorensen.

Version 0.29 March 13, 2026

We released a new schedule version!

We have new sessions!

• “BsidesLuxembourg 2026 CTF Walkthrough Session” by MUHAMMED WASEEM VILLAN
• “From CAN Frames to Corporate Firewalls: Life of an Automotive Security Researcher” by Hrishikesh Somchatwar
• “ANALYZE & HUNT DPRK ATTACKS” by RAKESH KRISHNAN

We have moved a session around: “Secure Development Lifecycle Applied - How to Make Things a Bit More Secure than Yesterday Every Day” by Lisi Hocke (May 6, 2026, 11 a.m., C1.02.06: lift to level 2 room #6 → May 6, 2026, 10 a.m., C1.03.06 : lift to level 3 room #6).

Version 0.28 March 12, 2026

We released a new schedule version!

We have new sessions!

• “Security Impress Karaoke” by Kirils Solovjovs
• “Talk to a Shell : Exploiting AI agent in Real Time” by Parth Shukla
• “Mastering Bash for Hackers: Extreme Command-Line Power” by Kirils Solovjovs

Version 0.27 March 11, 2026

We released a new schedule version!

We have new sessions!

• “The Forgotten Fingerprint: DNS Based OSINT Techniques for Product & Service Discovery” by Rishi (@rxerium)
• “[Reboot] ML foundations for cybersecurity in 2026” by Pauline Bourmeau (Cookie)
• “[Reboot] ML foundations for cybersecurity in 2026” by Pauline Bourmeau (Cookie)
• “From Manual Hunt to Mass Detection: Weaponising Nuclei Against Phishing” by Rishi (@rxerium)
• “Not So hARMless: The Hidden World of Linux Packers and Detection Challenges” by Massimo Bertocchi

We have moved a session around: “Managing Uninvited Guests: Securing Open Source Dependencies” by Kadi McKean, Frithjof Hoffmann (May 7, 2026, 2:15 p.m. → May 7, 2026, 2:10 p.m.)

Version 0.26 March 10, 2026

We released a new schedule version!

We have new sessions!

• “Startup Security 2020: Aged Like Wine or Milk?” by Guillaume Ross
• “Managing Uninvited Guests: Securing Open Source Dependencies” by Kadi McKean, Frithjof Hoffmann
• “Making a risk-informed LLM choice” by Jeremy Snyder
• “The challenges of AI-as-a-Service logging” by Jeremy Snyder

Version 0.25 March 10, 2026

We released a new schedule version!

We have a new session: “Teaming, Trust, and Threats: How Humans Interact with Generative AI in Security” by Tailia Malloy.

Version 0.24 March 10, 2026

We released a new schedule version!

We have a new session: “The Agents of Chaos: AI Driven Malware Generation” by Arad Donenfeld.

Version 0.23 March 9, 2026

We released a new schedule version!

We have moved a session around: “From CLI to Platform: Building NetCarapace, a Secure and Open Source URL Checking Ecosystem driven by Fondation Restena URL Shortener Use Case” by Cédric Renzi (May 7, 2026, 1:50 p.m. → May 8, 2026, 1:55 p.m.)

Version 0.22 March 9, 2026

We released a new schedule version!

We have new sessions!

• “Actionable CTI & Detection Engineering village”
• “Forensic Challenges in Real-World Cases of Digital Manipulation” by Thiago Vieira
• “When LLMs Summarize Security Findings: The Tradeoffs You Can’t Ignore” by Andrey Lukashenkov
• “Exploiting the Past: How Linguistic Redundancy weaponizes the Quantum Search Landscape” by Alessio Di Santo, Gabriella Lanziani

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “No API Required: State-of-the-Art Phishing Detection with Classical Machine Learning” by Pauline Bourmeau (Cookie) (C1.05.02: Workshops and Stage (lift to level 5 room #2) → C1.05.12: Workshops and Stage (lift to level 5 room #12))
• “Spreading malware with USB keys - does it still work ?” by Didier Barzin, Mathieu Vajou (May 8, 2026, 4:30 p.m., Main Stage → May 8, 2026, 9:40 a.m., C1.05.12: Workshops and Stage (lift to level 5 room #12))
• “Actionable CTI & Detection Engineering village” (May 7, 2026, 1:30 p.m. → May 7, 2026, 3:40 p.m.)

Version 0.21 March 9, 2026

We released a new schedule version!

We have new sessions!

• “Finding meaning in /dev/null” by Paul JUNG
• “Secure Development Lifecycle Applied - How to Make Things a Bit More Secure than Yesterday Every Day” by Lisi Hocke
• “Out of Security Exception - What to Do Without an Expert to Secure Your Software” by Lisi Hocke
• “The Agent Had a Plan—So Did I: Top Attacks on OWASP Agentic AI Systems” by Parth Shukla, Nagarjun Rallapalli
• “Hello LuCy nice to meet you! - A conclusion on a 3 year Open-Source cybersecurity project” by Denim Latić, Cynthia Wagner
• “Digital risks, threat models, and empathy: trainings that empower” by Łukasz Król
• “From CLI to Platform: Building NetCarapace, a Secure and Open Source URL Checking Ecosystem driven by Fondation Restena URL Shortener Use Case” by Cédric Renzi
• “Dungeons & Dragons: The security power tool you didn’t know you needed” by Klaus Agnoletti, Glen Sorensen

Version 0.20 March 8, 2026

We released a new schedule version!

We have a new session: “From Hours to Minutes: Automating Incident Response Triage with Open-Source Tools” by Markus Einarsson.

Version 0.19 March 8, 2026

We released a new schedule version!

We have a new session: “Phinding a Phisher: Don't let rep get you rekt” by Elliot Parsons.

Version 0.18 March 8, 2026

We released a new schedule version!

Sadly, we had to cancel a session: “Actionable CTI & Detection Engineering village”

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Advanced Threat Hunting: Staying One Step Ahead of Adversary” by Alex Holden (May 7, 2026, 10:40 a.m. → May 7, 2026, 10:35 a.m.)
• “OpenTide: From Raw Intelligence to Structured Threat-Informed Detections” by Remi Seguy (May 7, 2026, 11:20 a.m. → May 7, 2026, 11:15 a.m.)

Version 0.17 March 8, 2026

We released a new schedule version!

We have a new session: “Breaking the Control Plane: Exploiting MCP Servers in AI Workflows” by Yotam Perkal.

We have moved a session around: “The Spy Who Logged Me - When your XDR joins the attackers” by Melina Phillips (May 7, 2026, 11:15 a.m. → May 7, 2026, 11:20 a.m.)

Version 0.16 March 8, 2026

We released a new schedule version!

We have a new session: “Cloud Sovereignty” by Catalin Tiganila.

Version 0.15 March 8, 2026

We released a new schedule version!

We have new sessions!

• “AI Security village - technical training and implementation” by Parth Shukla, Nagarjun Rallapalli
• “AI Security village - technical training and implementation” by Parth Shukla, Nagarjun Rallapalli
• “A phishing trip with Fancy Bear - Let's analyze APT malware together!” by Marius Genheimer
• “Goodbye Purple Team, Hello Purple Bots” by Patrick Mkhael, Ralph El Khoury
• “AI and Cryptography for Evasive Malware” by cocomelonc
• “Death By Pickle: "Python's Betrayal ML"” by Kadi McKean, Frithjof Hoffmann
• “Malware Development for Ethical Hackers (Windows, Linux, Android)” by cocomelonc

Sadly, we had to cancel sessions:

• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli
• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli
• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli

Version 0.14 March 7, 2026

We released a new schedule version!

We have new sessions!

• “XCTDH Cross-Chain Transaction Data Hiding: Cyber Espionage and OPSEC Encounters” by Ellis Stannard
• “Unraveling Failure - Lessons from an Avoidable Ransomware Attack” by Mihai Tutulan
• “Packet Analysis for Beginners - an IoT toy, some packets, and Wireshark” by Katherine Leese

Version 0.13 March 7, 2026

We released a new schedule version!

We have new sessions!

• “Blackhoodie training - Introduction to Linux Memory Forensics” by Sonia Seddiki
• “Blackhoodie training - Introduction to Linux Memory Forensics” by Sonia Seddiki

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “How to Read Code to Find Vulnerabilities” by Louis Nyffenegger (May 6, 2026, 1:30 p.m. → May 6, 2026, 2 p.m.)
• “Dismantle The Bomb” by Stijn Tomme (May 6, 2026, 1:30 p.m. → May 6, 2026, 2 p.m.)
• “Dismantle The Bomb” by Stijn Tomme (May 6, 2026, 3:30 p.m. → May 6, 2026, 4 p.m.)
• “Level Up Your CI/CD: Building a secure pipeline with OSS” by Andoni Alonso, Paco Sanchez (May 6, 2026, 1:30 p.m. → May 6, 2026, 2 p.m.)

Version 0.12 March 5, 2026

We released a new schedule version!

We have new sessions!

• “Those Who Don’t Learn from CVEs Are Doomed to Rediscover Them” by Louis Nyffenegger
• “Android App Tricks: Defenses and Bypasses” by Aleksandr Pilgun
• “The whistles go woo woo: SIEM alerts, threat detection and tuning unnecessary noise” by Melina Phillips
• “Things Fall Apart: Allying Cybersecurity and Diplomacy against Authoritarian Disorder” by Luc Dockendorf
• “Advanced Threat Hunting: Staying One Step Ahead of Adversary” by Alex Holden
• “SPOT - Spear-Phishing Overwatching Tool” by Pauline Bourmeau (Cookie), William Robinet, Thibaut Diels, Mathieu Fourcroy
• “Threat Modelling Starter Training” by Ralph Andalis
• “Threat Modelling Starter Training” by Ralph Andalis

Version 0.11 March 2, 2026

We released a new schedule version!

We have a new session: “In The Wild Cloud Exfiltration Paths You Might Not Expect” by Tomas Kabrt.

Version 0.10 March 2, 2026

We released a new schedule version!

We have new sessions!

• “Why I Go to the Dark Web Every Day” by Alex Holden
• “Cloud Misconfigurations: Poke Poke, Breach” by Kat Fitzgerald
• “OpenTide: From Raw Intelligence to Structured Threat-Informed Detections” by Remi Seguy

Version 0.9 March 2, 2026

We released a new schedule version!

Sadly, we had to cancel a session: “Dismantle The Bomb” by Stijn Tomme

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Dismantle The Bomb” by Stijn Tomme (May 7, 2026, 11 a.m., Building D/room 3 Workshops and AI Security Village → May 7, 2026, 10 a.m., C1.02.13 : escape game room (lift to level 2 room #13))
• “Dismantle The Bomb” by Stijn Tomme (May 7, 2026, 2 p.m., Building D/room 3 Workshops and AI Security Village → May 7, 2026, 1:30 p.m., C1.02.13 : escape game room (lift to level 2 room #13))
• “Dismantle The Bomb” by Stijn Tomme (Building D/room 3 Workshops and AI Security Village → C1.02.13 : escape game room (lift to level 2 room #13))
• “Dismantle The Bomb” by Stijn Tomme (May 8, 2026, 9 a.m., Building D/room 3 Workshops and AI Security Village → May 8, 2026, 10 a.m., C1.02.13 : escape game room (lift to level 2 room #13))
• “Dismantle The Bomb” by Stijn Tomme (May 8, 2026, 11 a.m., Building D/room 3 Workshops and AI Security Village → May 8, 2026, 1:35 p.m., C1.02.13 : escape game room (lift to level 2 room #13))
• “Dismantle The Bomb” by Stijn Tomme (May 8, 2026, 2 p.m., Building D/room 3 Workshops and AI Security Village → May 8, 2026, 3:35 p.m., C1.02.13 : escape game room (lift to level 2 room #13))

Version 0.8 March 2, 2026

We released a new schedule version!

We have new sessions!

• “How to be just the right amount of Paranoid (Cybersecurity Edition)” by Denim Latić
• “Scaling defence - finding RedVDS from a phishing email” by Elliot Parsons
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Dismantle The Bomb” by Stijn Tomme
• “Spreading malware with USB keys - does it still work ?” by Didier Barzin, Mathieu Vajou
• “What is the dark web talking about? - Dark Jargon Detection and Identification” by Laura Bernardy
• “Understanding Mobile Stalkerware” by Elouan Rigaut

We have moved a session around: “How to Read Code to Find Vulnerabilities” by Louis Nyffenegger (Building D/room 1, Workshops and Detection Engineering village → Building D/room 2, Workshops and AI Security Village)

Version 0.7 Feb. 22, 2026

We released a new schedule version!
Still an early draft, but please let us know preferences/blockers!

We have new sessions!

• “The Spy Who Logged Me - When your XDR joins the attackers” by Melina Phillips
• “What You See Is (Not) What You Get” by Xavier Mertens
• “Confound and Delay: Honeypot Chronicles from the Digital Battlefield” by Kat Fitzgerald
• “No API Required: State-of-the-Art Phishing Detection with Classical Machine Learning” by Pauline Bourmeau (Cookie)
• “RioT – A Raspberry-Based Network Implant for Red Team Operations” by Olivier Médoc
• “Keynote: Identity Security Just Exploded” by Wendy Nather, Wendy Nather
• “Level Up Your CI/CD: Building a secure pipeline with OSS” by Andoni Alonso, Paco Sanchez

Version 0.6 Feb. 22, 2026

We released a new schedule version!

Version 0.5 Feb. 22, 2026

We released a new schedule version!

We have new sessions!

• “Actionable CTI & Detection Engineering village”
• “Actionable CTI & Detection Engineering village”
• “Actionable CTI & Detection Engineering village”
• “Actionable CTI & Detection Engineering village”

Version 0.4 Feb. 22, 2026

We released a new schedule version!

We have new sessions!

• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli
• “AI Security Village - Open Village/Q&A” by Parth Shukla, Nagarjun Rallapalli

Version 0.3 Feb. 22, 2026

We released a new schedule version!

We have a new session: “Lockpicking Village”.

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “How to Read Code to Find Vulnerabilities” by Louis Nyffenegger (May 6, 2026, 2 p.m. → May 6, 2026, 1:30 p.m.)
• “Packet Analysis for Beginners - an IoT toy, some packets, and Wireshark” by Katherine Leese (May 6, 2026, 1:30 p.m. → May 6, 2026, 9 a.m.)
• “Level Up Your CI/CD: Building a secure pipeline with OSS” by Andoni Alonso, Paco Sanchez (May 6, 2026, 9 a.m., Building D/room 2, Workshops and AI Security Village → May 6, 2026, 1:30 p.m., Building D/room 3 Workshops and AI Security Village)

Version 0.2 Feb. 22, 2026

We released a new schedule version!

We have new sessions!

• “Car Hacking Village” by Roald Nefs
• “Car Hacking Village” by Roald Nefs
• “Car Hacking Village” by Roald Nefs
• “Car Hacking Village” by Roald Nefs
• “Level Up Your CI/CD: Building a secure pipeline with OSS” by Andoni Alonso, Paco Sanchez
• “Lockpicking Village”
• “Lockpicking Village”
• “Lockpicking Village”
• “How to Read Code to Find Vulnerabilities” by Louis Nyffenegger
• “Hands-on Car Hacking & Automotive Cybersecurity” by Roald Nefs
• “Packet Analysis for Beginners - an IoT toy, some packets, and Wireshark” by Katherine Leese

Version 0.1 Feb. 20, 2026

We released our first schedule!