BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//orangecon-2026//talk//XQHKDH
BEGIN:VEVENT
UID:pretalx-orangecon-2026-XQHKDH@pretalx.com
DTSTART:20260604T161000Z
DTEND:20260604T164000Z
DESCRIPTION:It started\, as many DIVD investigations do\, with someone poki
 ng at something they probably shouldn't have and going "...huh." That some
 one was looking at Mendix\, a low-code platform used by thousands of organ
 isations worldwide\, including some that really should know better... and 
 what followed was a full-blown research journey that nobody quite expected
 .\n\nIn this talk\, Stan Plasmeijer and Rudy Dijkstra walk you through the
  complete DIVD Mendix security story. From the first accidental discovery 
 to building scanners\, coordinating disclosures\, and figuring out just ho
 w widespread the problem actually was. You'll learn how Mendix works\, why
  it keeps breaking in the same ways\, and how to test for it yourself. It'
 s not complicated. That's almost the whole problem.\n\nThis talk is for bl
 ue teamers wondering what's hiding in their organisation's app landscape\,
  red teamers looking for something new to love\, and developers who'd pref
 er not to feature in someone else's CVE. No prior Mendix knowledge needed.
  A working sense of humour helps.
DTSTAMP:20260525T202317Z
LOCATION:Track 1
SUMMARY:We Looked at Mendix. You Probably Should Too. - OverflowMyBuffers\,
  Stan
URL:https://pretalx.com/orangecon-2026/talk/XQHKDH/
END:VEVENT
END:VCALENDAR