Security BSides Las Vegas 2025

Version 0.25 July 30, 2025

We released a new schedule version!

Version 0.24 July 30, 2025

We released a new schedule version!

We have a new session: “Fragmentation of CTI: The Deck is Stacked Against the Defenders” by Dave Ahn.

We have moved a session around: “Hazard Analysis of Military AI Systems Using STPA-Sec: A Systems-Theoretic Approach to Secure and Assured Autonomy” by Josh Harguess, Chris Ward (Aug. 4, 2025, 2 p.m., Siena → Aug. 4, 2025, 3 p.m., Tuscany).

Version 0.23 July 29, 2025

We released a new schedule version!

Version 0.22 July 29, 2025

We released a new schedule version!

We have a new session: “Opening Remarks, Tuesday” by Daemon Tamer.

We have moved a session around: “From Me to We” by Bryson Bort (Aug. 5, 2025, 9:30 a.m. → Aug. 4, 2025, 9:30 a.m.)

Version 0.21 July 29, 2025

We released a new schedule version!

We have new sessions!

• “From Me to We” by Bryson Bort
• “Stealing Browser Cookies: Bypassing the newest Chrome security measures” by Rafael Felix
• “A glitch in the matrix: HUMINT OSINT and Digital Forensics to identify & remove hostile foreign corporate espionage actors (Token 12)” by John O. Thorne

Sadly, we had to cancel sessions:

• “Bridge to Nowhere Good: When `Azure Relay` becomes a Red Teamer's highway” by Robert Pimentel, Edward "0xflagplz" Landers, Josh Huff
• “Bridge to Nowhere Good: When Azure Relay becomes a Red Teamer's highway (12-cancel)”
• “Opening Remarks, Tuesday” by Daemon Tamer

Version 0.20 July 18, 2025

We released a new schedule version!

We have moved a session around: “Silent Auction Closes, Wednesday” (Aug. 6, 2025, 10:30 a.m. → Aug. 6, 2025, 11 a.m.)

Version 0.19 July 18, 2025

We released a new schedule version!

We have new sessions!

• “Silent Auction Closes, Tuesday”
• “Silent Auction Opens, Tuesday”
• “Silent Auction Opens, Wednesday”
• “Silent Auction Closes, Monday”

We have moved a session around: “Silent Auction Closes, Wednesday” (Aug. 6, 2025, 10 a.m. → Aug. 6, 2025, 10:30 a.m.)

Version 0.18 July 11, 2025

We released a new schedule version!

Version 0.17 July 11, 2025

We released a new schedule version!

We have moved a session around: “Broke but Breached: Secret Scanning at Scale on a Student Budget” by Raviteja, Ming Chow (Aug. 4, 2025, 2:25 p.m. → Aug. 5, 2025, 6:30 p.m.)

Version 0.16 July 1, 2025

We released a new schedule version!

We have a new session: “Career Campaigns: A Tabletop RPG Workshop for Your Next Infosec Role, Monday AM” by Stryker.

Version 0.15 July 1, 2025

We released a new schedule version!

We sadly had to cancel a session: “Writing Windows Kernel Drivers for Power and Visibility, AM” by Pavel Yosifovich

We have moved a session around: “From Command Line to Center Stage: Hack Your Way to Confident Speaking” by James McQuiggan, Erich Kron (Boardroom → Opal)

Version 0.14 June 30, 2025

We released a new schedule version!

Sadly, we had to cancel sessions:

• “Breakfast, Wednesday”
• “Breakfast, Tuesday”

Version 0.13 June 30, 2025

We released a new schedule version!

We have new sessions!

• “Engineering Cyber Resilience for the Water Sector” by Andrew Ohrt, Art Conklin, Virginia “Ginger” Wright
• “What Should CVE Be When It Grows Up?” by Bob Lord, Tod Beardsley, Madison Oliver, Jerry Gamblin, Chris Butera (Invited)
• “Phish-Back: How to turn the problem into a solution.” by Gautier Bugeon

We sadly had to cancel a session: “Writing Windows Kernel Drivers for Power and Visibility, PM” by Pavel Yosifovich

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “When the Breach Hits the Fan: Understanding Cyber Insurance” by Mea Clift (Aug. 5, 2025, 5 p.m. → Aug. 4, 2025, 3 p.m.)
• “Dungeons & Dragons: The security tool you didn’t know you needed” by Klaus Agnoletti, Glen Sorensen (Aug. 4, 2025, 3 p.m. → Aug. 5, 2025, 5 p.m.)
• “Password ~Audit~ Cracking in AD: The Fun Part of Compliance” by Mat Saulnier (Aug. 4, 2025, 3 p.m. → Aug. 6, 2025, 10 a.m.)
• “Password Expiry is Dead: Real-World Metrics on What Rotation Actually Achieves” by Dimitri Fousekis (Aug. 5, 2025, 10:30 a.m. → Aug. 6, 2025, 11 a.m.)
• “Engineering Cyber Resilience for the Water Sector” by Art Conklin, Virginia “Ginger” Wright, Andrew Ohrt (Aug. 5, 2025, 10:30 a.m., Pearl → Aug. 4, 2025, 3 p.m., Opal)

Version 0.12 June 26, 2025

We released a new schedule version!

We have new sessions!

• “Hire Ground Resume Reviews, Tuesday Lunch Break”
• “Hire Ground Resume Reviews, Monday Lunch Break”

Sadly, we had to cancel sessions:

• “Breakfast, Monday”
• “Breakfast, Tuesday”

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Hire Ground Mixer, Tuesday” (Aug. 5, 2025, 4:30 p.m. → Aug. 5, 2025, 5 p.m.)
• “Hire Ground Resume Reviews, Monday Evening” (Aug. 4, 2025, 6 p.m. → Aug. 4, 2025, 4 p.m.)
• “Boost Your Career: Get Practical InfoSec Experience in Your Community!” by Ashley Cihak, Mea Clift (Aug. 5, 2025, 5 p.m. → Aug. 5, 2025, 3 p.m.)
• “Hire Ground Mixer, Monday” (Aug. 4, 2025, 4 p.m. → Aug. 4, 2025, 5 p.m.)
• “Hire Ground Resume Reviews, Tuesday Evening” (Aug. 5, 2025, 6 p.m. → Aug. 5, 2025, 4 p.m.)
• “SIGMA, one rule to find them all” by Rain Baker, HD Moore (Aug. 5, 2025, 3 p.m. → Aug. 4, 2025, 6:30 p.m.)

Version 0.11 June 23, 2025

We released a new schedule version!

We have a new session: “Can You Hear Me Now? A Survey of Communications Platforms During Emergencies” by Slava Maslennikov.

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Cascading Failure, Unified Defense: Defending Water, Power, Healthcare, & EMS” by Alexander Vanino, Ruslan Karimov (Aug. 4, 2025, 6:20 p.m. → Aug. 4, 2025, 5:45 p.m.)
• “Cyber Civil Defense: Volunteers to the Rescue” by Grace Menna (Aug. 4, 2025, 5:40 p.m. → Aug. 6, 2025, 10 a.m.)
• “Neighborhood & Household Resilience- A Month Without External Assistance.” by David Batz (Aug. 6, 2025, 10 a.m. → Aug. 6, 2025, 10:30 a.m.)

Version 0.10 June 17, 2025

We released a new schedule version!

We have a new session: “Rusty pearls: Postgres RCE on cloud databases” by Tal Peleg, Coby Abrams.

Version 0.9 June 16, 2025

We released a new schedule version!

Version 0.8 June 13, 2025

We released a new schedule version!
“Nonprofit (In)security: Creative Protections for Service Organizations” still needs to either move or have the speaker's availability updated.
The other availability warnings are all the best fit we can make to the speaker's stated availability. They will have to adjust or withdraw.
The 8 session overlaps are all OK (none of them are talks).

We have new sessions!

• “Hardening Containers with Seccomp: Hands-On Profiles, Pitfalls, and Real Exploits” by Ben Hirschberg
• “From Code to Cloud: Securing Your Stack with Open-Source Tools” by Mackenzie Jackson
• “The Remote Grift: Cunning Meets Naivete, and the Victims Become the Criminals (Token 03)” by Ira Victor
• “Infiltrating Like a Ninja: Unveiling Detection Gaps in Physical Security Across Japan and the U.S” by Fumiya Imai, You Nakatsuru, Viet Luu
• “Who Scans the Scanner? Exploiting Trend Micro Mobile Security” by Lucas Carmo
• “Cyber Incident Command System (CICS) A people orchestration layer” by Blake Scott, Scott Fraser
• “RAGnarok: Assisting Your Threat Hunting with Local LLM” by Jun Miura, Cybelle Oliveira
• “.e'X'es and 'O'auths (They Haunt Me): In-Depth Analysis of OAuth/OIDC Misconfigurations and Token Replay Attacks” by Darryl G. Baker
• “So... You want to build your own hacking device...” by Alex Thines
• “What to Tell Your Developers About NHI Secrets Security and Governance” by Dwayne McDaniel
• “Don't be LLaMe - The basics of attacking LLMs in your Red Team exercises” by Brent Harrell, Alex Bernier
• “The Art of Concealment: CVE's Challenge with Transparency” by Jerry Gamblin
• “Dungeons & Dragons: The security tool you didn’t know you needed” by Klaus Agnoletti, Glen Sorensen
• “The Not So Boring Threat Model of CSP-Managed NHI’s” by Kat Traxler
• “Rewriting the Playbook: Smarter Vulnerability Management with EPSSv3, CVSSv4, SSVC & VEX Frameworks” by Avinash Nutalapati
• “I'm A Machine, And You Should Trust Me: The Future Of Non-Human Identity” by Dwayne McDaniel
• “Active Directory Attacks and Defense 101” by Darryl G. Baker
• “LLM Mayhem: Hands-On Red Teaming for LLM Applications” by Travis Smith, Kasimir Schulz
• “Harnessing AI and Post-Quantum Cryptography for Cybersecurity in the Quantum Era” by Natalia Semenova, Anushka Khare
• “Keeping Our History Alive: The Hacker’s Guide to Sticker Preservation” by Brian Baskin
• “From interview questions to cluster damage: Adventures in k8s cluster shenanigans” by Amit Serper, Travis Lowe
• “Multi-Cloud (AWS, Azure & GCP) Security [25 Edition], Day One, PM” by Yash Bharadwaj, Manish Gupta
• “My friend Ben: solid employee, DPRK agent” by Chris Merkel
• “Azazel System: Tactical Delaying Action via the Cyber-Scapegoat Gateway” by Makoto Sugita, Soya Aoyama
• “Indexing the Chaos: Extract PII from Ransomware Leaks” by Juanma
• “Time is Running Out - Tying it All Together - What Will You Do in the Near Term?” by Josh Corman
• “Shorts Begone: Modding YouTube on iOS (without jailbreaking)” by Navan, MasterChen
• “Cyber Threat Landscaping Workshop” by Alexis Womble
• ““PEBKAC Rebooted: A Hacker’s Guide to People‑Patching in 90 Days”” by David Shipley
• “Workshop on Cybersecurity Policy in Practice” by Jayati Dev, Vaibhav Garg
• “The Scene is Dead” by Allison Nixon
• “Building your own CA infrastructure on cheap HSMs” by Ted Hahn, Mark Hahn
• “Wi-Fi-So-Serious” by James Hawk
• “Manufacturing Breakthroughs: How Conflict Leads to Innovation” by Munish Walther-Puri
• “A Winning Competition” by Wasabi
• “Malicious Packages - they're gonna get ya!” by Megg Sage, Allan Friedman
• “Laser Beams & Light Streams: Letting Hackers Go Pew Pew, Building Affordable Light-Based Hardware Security Tooling” by Larry Trowell, Sam "PANTH13R" Beaumont
• “Autonomous Discovery of Logic-based API Vulnerabilities” by Taha Biyikli, Dvir Lazar
• “Unawakened Wakeup: A Novel PHP Object Injection Technique to Bypass __wakeup()” by Hiroki Matsukuma, Mat Saulnier
• “Power Play: AI Dominance Depends on Energy Resilience” by Munish Walther-Puri, Emma M Stewart
• “Where’s Waldo? Why Recruiters Can’t Find You (and What To Do About It)” by Ricki Burke
• “When the Breach Hits the Fan: Understanding Cyber Insurance” by Mea Clift
• “RAG Against the Machine: Using Retrieval-Augmented Generation and MCP to Fortify Cybersecurity Defenses” by Brennan Lodge
• “Agentic AI Malware: Why the Cybersecurity Battle Isn’t Over” by Candid Wuest
• “Emergency & Urgent Care Remains in Critical Condition” by Christian Dameff, Beau Woods
• “Your Interview Game is Weak: Gamifying Technical Interviews through Role-Playing” by Matt Torbin
• “Inside the Open-Source Kill Chain: How LLMs Helped Catch Lazarus and Stop a Crypto Backdoor” by Mackenzie Jackson
• “Locking Hands: Ransomware Meets Bioimplants” by Mauro Eldritch
• “Taking down the power grid!” by John-André Bjørkhaug
• “Hack Your Network: Career Connections for Cyber Pros” by Heather Morris
• “No IP, No Problem: Exfiltrating Data Behind IAP” by Ariel Kalman
• “Bridge to Nowhere Good: When `Azure Relay` becomes a Red Teamer's highway” by Robert Pimentel, Edward "0xflagplz" Landers, Josh Huff
• “Root To CISO or not?” by Jake Bernardes, Ray Espinoza, Kris Rides
• “Defending Our Water - Defending Our Lives” by Dean Ford, Virginia “Ginger” Wright, Andrew Ohrt
• “Hire Ground Resume Reviews, Wednesday Morning”
• “Advanced BioTerrorism Methods for the Discerning Practitioner (Token 13)” by Dr. Mixael S. Laufer
• “Securing AI Infrastructure: Lessons from Cyberattacks, Espionage, and Insider Threats Against Other Critical Sectors” by Fred Heiding, AndrewKao
• “Cascading Failure, Unified Defense: Defending Water, Power, Healthcare, & EMS” by Alexander Vanino, Ruslan Karimov
• “Breaking the Guest List: Hacking Invitation Systems for Fun and Profit” by Ali Kabeel
• “SIGMA, one rule to find them all” by Rain Baker, HD Moore
• “Innovative, Shiny, and Vulnerable: Four Ways to Exploit Modern SaaS Data Platforms” by Ben Kofman, Ali Kabeel
• “Lessons from Black Swan Events and Building Anti-Fragile Cybersecurity Systems” by Dave Lewis
• “Breaking the Illusion: Bypassing Endpoint Security Controls with Simple Tactics” by Blake Hudson, Caleb Sargent
• “Gremlin Hunting with SIGMA rules” by Rain Baker, Nicholas Carroll
• “From Help Desk to CISO” by Nicholas Carroll
• “Multi-Cloud (AWS, Azure & GCP) Security [25 Edition], Day One, AM” by Yash Bharadwaj, Manish Gupta
• “XSS is dead - Browser Security Features that Eliminate Bug Classes” by Javan Rasokat
• “AI Governance in Action: Fundamentals & Tabletop Workshop” by Josh Harguess, Chris Ward
• “Hazard Analysis of Military AI Systems Using STPA-Sec: A Systems-Theoretic Approach to Secure and Assured Autonomy” by Josh Harguess, Chris Ward
• “WhoAmI.exe - Can You Find The Threat?” by Reanna Schultz, Joshua Mason
• “Craps, Clout, and Career Chaos: The Game They Forgot to Explain” by Nicole Beckwith, Jake Lorz
• “Poison in the Wires: Interactive Network Visualization of Data Attacks” by Anya Vesna
• “Writing Windows Kernel Drivers for Power and Visibility, AM” by Pavel Yosifovich
• “Introduction to Cryptographic Attacks” by Matt Cheung
• “Creating the Torment Nexus: Using Machine Learning to Defeat Machine Learning” by Noah Grosh
• “Multi-Cloud (AWS, Azure & GCP) Security [25 Edition], Day Two, AM” by Yash Bharadwaj, Manish Gupta
• “Threat and adversary emulation operational exercises” by Abhijith "Abx" B R
• “The Age of Zygote Injection” by Tricta
• “SOC Like a Genius: Cognitive Agents Delivering Wisdom at Scale” by Oudy Even Haim, Sarah Young
• “The Botnet Strikes Back: how we assembled a coalition to take down a criminal network & their all-out response (Token02)” by Ryan English
• “Hackers Kinda Like to Eat” by Whitney Bowman-Zatzkin, Andrew Rose
• “Community Defense in Depth: Teaching digital security and privacy practices for the public good” by Melanie Gonzalez, Lidia Giuliano
• “The Rise of Synthetic Passwords in Botnet & Attack Operations” by Dimitri Fousekis, Travis More
• “Turbo Tactical Exploitation: 22 Tips for Tricky Targets” by HD Moore
• “Hands on DuckyScript: Introduction to HID Attacks with O.MG Devices” by Wasabi, Kalani Helekunihi
• “Avoiding Credential Chaos: Authenticating With No Secrets” by Steve Jarvis, Chitra Dharmarajan
• “Machine Identity & Attack Path: The Danger of Misconfigurations” by Filipi Pires
• “Desktop Applications: Yes, We Still Exist in the Era of AI!!!” by Elizabeth R Rasnick, Uday Bhaskar Seelamantula
• “Advancing Network Threat Detection Through Standardized Feature Extraction and Dynamic Ensemble Learning” by Jason Ford
• “Prompt Hardener - Automatically Evaluating and Securing LLM System Prompts” by Junki Yuasa, Yoshiki Kitamura, Krity Kharbanda
• “Crossing the Border Again with a Burner Phone (Token 11)” by Wendy Knox Everette
• “Real Life Needs an ESP Overlay — So we Made One! (Token 04)” by Alex Thines, Brad "Sno0ose" Ammerman
• “The Perfect BLEnd: Reverse engineering a bluetooth controlled blender for better smoothies” by Ryan Mast, Edward Farrell
• “I Didn’t Register for This: What’s Really in Google’s Artifact Registry?” by Moshe Bernstein, Lenin Alevski
• “Root Cause and Attack Flows: Interpretable ML for Alert & Log Correlation” by Ezz Tahoun
• “Detecting, Deobfuscating, and Preventing Obfuscated Script Execution with Tree-sitter” by David McDonald
• “Writing Windows Kernel Drivers for Power and Visibility, PM” by Pavel Yosifovich
• “Shedding Light on Web Isolation Technologies and Their Bypass Techniques: C2 Communication via Outlook Using SMTP and IMAP” by Terada Yu
• “Indexing the Chaos: Extracting PII from Ransomware Leaks (Token 06)” by Juanma
• “Beyond the Command Line: Transitioning from Individual Contributor to Leader” by Leo Pate
• “Predicting the Lifespans of Internet Services: Falling down the ML Rabbit Hole, and What We Learned From The Thud” by Ariana Mirian
• “Reversing F5 Service Password Encryption” by Dustin Heywood
• “Boost Your Career: Get Practical InfoSec Experience in Your Community!” by Ashley Cihak, Mea Clift
• “Beyond the Breach: Why Your Tabletop Exercise Should be Your Worst Nightmare” by Madison Rocha
• “Casting Light on Shadow Cloud Deployments” by Brittney Argirakis, Chapin Bryce
• “So You Want to Give A Talk: How to Write a CFP” by Phil "Soldier of FORTRAN" Young
• “The Protocol Behind the Curtain: What MCP Really Exposes” by Srajan Gupta, Vinay Kumar
• “Eliminating Bug Classes at Scale: Leveraging Browser Features for Proactive Defense” by Javan Rasokat
• “Hacking Secure Coding Into Education” by Or Sahar, Yariv Tal
• “Vibe Check: The dark side of vibe coding” by Chloe Potsklan, Megan Kaczanowski
• “Mapping the Gaps: How Disconnects in Critical Infrastructure Leave Cities Vulnerable (Token 08)” by QuietRoar
• “Russian Nesting Dolls: when Turla got into the ISI who was into an Indian Embassy, and how we found them” by Danny Adamitis
• “Sex Work Is Tech Work: What Technologists Should Know From the Sex Industry (Token 07)” by Gwyndolyn
• “New Protocol: Novel Threats--Exploring MCP’s Emerging Security Risks” by David Melamed
• “Human Attack Surfaces in Agentic Web: How I Learned to Stop Worrying and Love the AI Apocalypse” by Matthew Canham, Unnamed user
• “Thinking Outside the SOC: Structured Analytics for the Overloaded Cyber Analyst” by Alina Thai, Haily Beem
• “Cracking 936 Million Passwords” by Jeff Deifik
• “Detect and Respond? Cool Story — or Just Don’t Let the Bad Stuff Start.” by Jimmy Shah, Matthew Brown
• “Setting the Table - WarGames 2027 & Maslow's Hierarchy of Needs as Hybrid Warfare Nears” by Josh Corman
• “Interview Like a Legend: No Slides, Just Vibes” by John Stoner
• “We Fight for the User's... Session” by Mark Hoopes
• “The Unbearable Weight of Commercial Licensing. Combining Closed Systems with Open Source Defense” by Keya Arestad
• “Cracking Hidden Identities: Understanding the Threat Surface of Hidden Identities and Protecting them Against Password Exposure” by Or Eshed
• “Cyber Civil Defense: Volunteers to the Rescue” by Grace Menna
• “Password ~Audit~ Cracking in AD: The Fun Part of Compliance” by Mat Saulnier
• “The (Un)Rightful Heir: My dMSA Is Your New Domain Admin” by Yuval Gordon
• “Security Theater, Now Playing: When Security Is a Sideshow Instead of a Strategy” by Vanessa Redman, Mia Kralowetz
• “Mental Models to Anticipate the Next Stages of the AI and Cybersecurity Revolution” by Sounil Yu
• “From Drone Strike to File Recovery, outsmarting a nation state (Token 10)” by Guy Barnhart-Magen, Brenton Morris
• “Password Expiry is Dead: Real-World Metrics on What Rotation Actually Achieves” by Dimitri Fousekis
• “Product Security: The Googley Way” by Ochaun Marshall
• “Let's Go Shopping: Third-Party Vendors and CyberRisk” by Rafael Ayala, Meghan Jacquot
• “Extending Password (in)Security to the Browser: How Malicious Browser Extensions Are Used to Steal User Passwords” by Or Eshed
• “UNION SELECT * FROM hackers: Why We Should Be Building InfoSec Worker Power Through the Labor Movement” by Logan Arkema
• “End of Life (EOL) Equipment should not mean End of Life (Your Life)” by Paul Roberts, Stacey Higginbotham, Silas Cutler
• “Automating Phishing Infrastructure Development Using AI Agents” by Fred Heiding, Simon Lermen
• “Organizing Cyber: Why We Need More IT & Cybersecurity Unions (Token 08)” by CyberGuy
• “Multi-Cloud (AWS, Azure & GCP) Security [25 Edition], Day Two, PM” by Yash Bharadwaj, Manish Gupta
• “Securing Frontends at Scale: Paving our Way to the Post-XSS World” by Aaron Shim
• “From Zero Trust to Trusted Advisor: Selling Security to Stakeholders” by Glen Sorensen, Daniela Parker
• “Take all my money – penetrating ATMs” by Fredrik Sandström, Jonathan Fischer
• “Oh Hotel No!: How A Hopeless Hooligan Helped A Homie From Homeless To Homeowner In 9 Months (Token 05)” by Justin Varner
• “Career Campaigns: A Tabletop RPG Workshop for Your Next Infosec Role, Monday PM” by Stryker
• “Neighborhood & Household Resilience- A Month Without External Assistance.” by David Batz
• “Cybersecurity Roleplaying Training: Design & Implement Engaging Incident Response Exercises” by Klaus Agnoletti, Glen Sorensen
• “Ask EFF (Token 09)” by Chris Vines, Hannah Zhao, Lisa Femia, Alexis Hancock
• “Ransomware As Canary For Societal Disruption” by Joe Slowik
• “Broke but Breached: Secret Scanning at Scale on a Student Budget” by Raviteja, Ming Chow
• “HR Hates My Mugs: Evading AI Censorship (Token 07)” by TerryBibbles
• “From Command Line to Center Stage: Hack Your Way to Confident Speaking” by James McQuiggan, Erich Kron
• “Hire Ground Resume Reviews, Monday Evening”
• “Ask the Fed (Token 01)” by Noah K, Joel Max, Tim Weston, Matt, Donald McFarlane
• “Increasing Complexity and Frequency of Cyber Events: Trends, Costs, and Risk Mitigation Strategies” by Wendy Hou-Neely
• “Hire Ground Resume Reviews, Tuesday Evening”
• “Engineering Cyber Resilience for the Water Sector” by Art Conklin, Virginia “Ginger” Wright, Andrew Ohrt
• “Thwarting Key Extraction and Supply Chain attacks by Detonating GPUs” by Mehmet Sencan
• “The HMAC Trap: Security or Illusion?” by Marluan "Izzny" Cleary

Sadly, we had to cancel sessions:

• “Skytalks Monday Panel Hour”
• “Skytalks Tuesday Panel Hour”
• “Hire Ground Resume Review”
• “The World Famous Hire Ground Panel, Monday Edition” by Kirsten Renner

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “The World Famous Hire Ground Panel, Tuesday Edition” by Heather Morris, Kris Rides, Kirsten Renner, Noelle Hori (Aug. 5, 2025, 6 p.m. → Aug. 5, 2025, 4 p.m.)
• “Bridge to Nowhere Good: When Azure Relay becomes a Red Teamer's highway (12-cancel)” (Aug. 4, 2025, 6 p.m. → Aug. 5, 2025, 6 p.m.)
• “Skytalks Reception” (Aug. 4, 2025, 7 p.m., Foyer, Platinum Hotel Conference Center → Aug. 4, 2025, 8 p.m., Suite 1702)
• “Skytalks Token Drop 5” (Aug. 6, 2025, 9:30 a.m. → Aug. 6, 2025, 9 a.m.)
• “Skytalks Token Drop 1” (Aug. 4, 2025, 9:30 a.m. → Aug. 4, 2025, 9 a.m.)
• “Skytalks Token Drop 3” (Aug. 5, 2025, 9:30 a.m. → Aug. 5, 2025, 9 a.m.)
• “Stopping the Nuclear Apocalypse with Threat Intel (Token 11)” by Paul Miller (Aug. 5, 2025, 10:55 a.m. → Aug. 5, 2025, 5 p.m.)
• “Hire Ground Mixer, Tuesday” (Aug. 5, 2025, 4 p.m. → Aug. 5, 2025, 4:30 p.m.)

Version 0.7 May 23, 2025

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Hire Ground Mixer, Tuesday” (Aug. 5, 2025, 5 p.m. → Aug. 5, 2025, 4 p.m.)
• “Hire Ground Mixer, Monday” (Aug. 4, 2025, 5 p.m. → Aug. 4, 2025, 4 p.m.)

Version 0.6 May 23, 2025

We released a new schedule version!

We have new sessions!

• “Stopping the Nuclear Apocalypse with Threat Intel (Token 11)” by Paul Miller
• “Bridge to Nowhere Good: When Azure Relay becomes a Red Teamer's highway (12-cancel)”

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “The World Famous Hire Ground Panel, Tuesday Edition” by Heather Morris, Kris Rides, Kirsten Renner, Noelle Hori (Aug. 5, 2025, 4 p.m. → Aug. 5, 2025, 6 p.m.)
• “The World Famous Hire Ground Panel, Monday Edition” by Kirsten Renner (Aug. 4, 2025, 4 p.m. → Aug. 4, 2025, 6 p.m.)

Version 0.5 May 14, 2025

We released a new schedule version!

We have moved a session around: “Early Speaker Reg” (Sept. 7, 2025, 10 a.m. → Aug. 3, 2025, 10 a.m.)

Version 0.4 May 14, 2025

We released a new schedule version!

We have new sessions!

• “EarlyBird Reg -- Only pre-sales.”
• “Early Speaker Reg”

Version 0.3 May 14, 2025

We released a new schedule version!

We have moved a session around: “Morning Trainings, Tuesday” (July 8, 2025, 10:30 a.m. → Aug. 5, 2025, 10:30 a.m.)

Version 0.2 May 14, 2025

We released a new schedule version!

We have new sessions!

• “Skytalks Tuesday Panel Hour”
• “Skytalks Monday Panel Hour”
• “Skytalks Token Drop 5”

Version 0.1 May 14, 2025

We released our first schedule!