Skip to main content
Search Icon
Search Icon
HardPwn: Automated Hardware Exploitation Toolkit
  • 14:00
  • Wed
  • 03 Dec
Stage: Arsenal Lab

Session Type: Demo

HardPwn is a purpose-built hardware exploitation platform crafted for intermediate and advanced hardware hackers who want to push embedded devices, PCBs, and IoT gadgets to their limits. The toolkit elevates low-level hardware reconnaissance by automatically probing SPI, UART, I2C, and JTAG interfaces, performing chip-level reconnaissance where possible, executing NAND glitching on non-BGA chips, and dumping firmware—all with minimal setup. By automating over 90% of typical test cases, HardPwn transforms what traditionally takes months of manual exploration into a matter of hours.

Presenter:

Lessons Learned from Red Teaming 100 GenAI Systems
  • 14:00
  • Wed
  • 03 Dec
Stage: Deep Dive

Session Type: Presentation

In this talk, the Head of Microsoft’s AI Red Team will walk through the lessons learned from red teaming more than 100 Generative AI applications. The audience will learn about traditional security harms, content-safety harms, and frontier harms such as persuasion and self-replication - and how to effectively probe for them.

Presenter:

Future - Ready Cyber: Operations for Decision Makers
  • 14:00
  • Wed
  • 03 Dec
Stage: Workshop - L1 - Suite 14

Session Type: Workshop

A boardroom level discussion for positioning today’s strategic initiatives for cyber maturity, readiness, resiliency, and overall survivability in the context of the fifth domain of operations. Shaping the future role and agenda of cyber security executives, stakeholders, and decision makers, beyond buzzwords and distracting trends. A thought-provoking session for those who seek the means to -lead the way, instead of following the path. An opportunity to not only ask difficult questions, but also a trusted circle to discuss hard facts. The session that has been referred to as “the workshop that boardroom leaders must seek but did not know they needed”. Plan ahead and join this “unplugged” workshop to navigate the next-day priorities from a new perspective, make informed decisions in timely manner, and counter-evolve against the ever-evolving emerging cyber threats, from enterprise business Risk to re-shaping operations. In this rare appearance, seize the opportunity to hear and engage with Dr Grigorios Fragkos (aka Dr Greg) a thought leader who wrote the book on AI-powered real-time threat assessment 20 years ago, has built cyber security strategies at national level, executed mission-critical projects that you have heard of, and shaped cyber resiliency operations in more than 20 countries.

Presenter:

Hacking With Your Voice
  • 14:00
  • Wed
  • 03 Dec
Stage: Briefings 1

Session Type: Presentation

Presenter:

National Autonomous AI-Enhanced Cyber Defense Network for Critical Infrastructure in ICS/SCADA Systems
  • 14:00
  • Wed
  • 03 Dec
Stage: Briefings 2

Session Type: Presentation

This session presents a groundbreaking framework for building a National Autonomous AI-Enhanced Cyber Defense Network designed to safeguard critical infrastructure operating on ICS/SCADA systems. The proposed approach integrates federated learning, advanced AI-driven anomaly detection, and autonomous response mechanisms into a unified national strategy.Participants will explore how the framework:Connects Industrial SOCs nationwide, enabling real-time sharing of predictive alerts, threat intelligence, and incident data while preserving data privacy.Leverages advanced AI models (RNNs, autoencoders, hybrid deep learning) to detect anomalies proactively before they evolve into full-scale cyberattacks.Implements federated learning, allowing distributed industrial sites to collaboratively improve detection accuracy without transferring sensitive operational data.Introduces self-healing and autonomous response capabilities, such as isolating compromised components, reconfiguring systems in real-time, and executing automated playbooks without human intervention.Provides resilience against adversarial AI attacks, ensuring both the infrastructure and the defense algorithms remain secure from manipulation.The session emphasizes the strategic importance of a unified national framework to defend against increasingly complex and coordinated cyber-physical threats. Attendees will gain insights into practical implementation pathways, lessons from real-world ICS/SCADA incidents (Stuxnet, BlackEnergy, Triton), and the transformative role of AI in industrial cybersecurity.By the end, participants will understand how this approach transitions cyber defense from reactive monitoring to proactive, predictive, and autonomous protection—enhancing national resilience and ensuring the continuity of vital sectors such as energy, water, transportation, and heavy industry.

Presenter:

Speaking Risk, not Tech: The Boardroom discussions
  • 14:00
  • Wed
  • 03 Dec
Stage: Executive Summit

Session Type: Panel

How to frame cyber in business terms - impact, likelihood, exposure, and options - so boards can weigh trade-offs, set appetite, and back the right investments.

Presenter:

Your biggest Identity Risk Isn't Human
  • 14:00
  • Wed
  • 03 Dec
Stage: Sponsored Briefings

Session Type: Presentation

In this session, Taher Karaki explains identity risks inside directory and cloud environments. The talk outlines failures in traditional identity risk scoring and the blind spots teams miss when prioritisation ignores real exposure. It highlights correlations between role sprawl, privilege drift, certificate posture gaps, and cloud identity paths that weaken security outcomes. T

Presenter:

Hack the Future: Student Pathways into Cybersecurity Careers
  • 14:00
  • Wed
  • 03 Dec
Stage: Black Hat Campus

Session Type: Panel

Curious about how to break into cybersecurity? Hear from experts and rising stars who turned their studies into careers. Get real advice, insider stories, and the roadmap to start hacking your own future.

Presenter:

Protecting Performance Data in the Age of AI Coaching
  • 14:00
  • Wed
  • 03 Dec
Stage: The Back Room

Session Type: Podcast

This episode digs into what really happens to your performance data when coaching goes AI-powered. Expect a straight-talking chat about metrics, motivation, privacy, and how to keep training smarter without giving away more than you meant to.

Presenter:

Through the Pipeline: Scaling Detection Engineering with Detection-as-Code
  • 14:20
  • Wed
  • 03 Dec
Stage: Sponsored Briefings

Session Type: Presentation

This session explains how Detection-as-Code transforms detection engineering into a scalable, repeatable process. Abdulmalik Banaser outlines how pipelines, version control, testing, and automation improve rule quality and deployment speed. The talk highlights practical methods to standardise detection logic, reduce errors, and align engineering workflows with modern software practices.

Presenter:

Red Team x AI: A Tactical Alliance?
  • 14:20
  • Wed
  • 03 Dec
Stage: Briefings 2

Session Type: Presentation

As the threat landscape continues to evolve, red team operations must continuously adapt to simulate modern adversaries more effectively. One of the biggest game-changers we've seen recently is the rise of Large Language Models (LLMs) and their integration into security workflows — both defensively and offensively.This session explores how AI particularly LLMs can be embedded into red team operations to augment capability, increase automation, and simulate more human-like adversaries. We’ll go beyond the theoretical, showing how AI can support tasks like adversarial content generation, social engineering, infrastructure automation, and even autonomous command execution when integrated with C2 frameworks.

Presenter:

Harnessing Pre-Emergent Threat Intelligence: An Ethical Approach to Disrupting the Cybercrime Supply Chain
  • 14:20
  • Wed
  • 03 Dec
Stage: Briefings 1

Session Type: Presentation

The economics of the exploit landscape today heavily favor attackers, with zero-day vulnerabilities commanding high prices on illicit markets and fueling sophisticated cybercrime. This session will dissect that existing exploit economy, revealing how it drives the relentless pace of advanced persistent threats (APTs) and nation-state attacks. We'll then introduce and explore a disruptive, ethical model designed to fundamentally alter this dynamic. Discover how a transparent and ethical market for pre-emergent vulnerability and exploit intelligence can empower defenders with unprecedented foresight. This isn't just about finding bugs; it's about shifting the power balance, increasing the cost and complexity for adversaries, and giving enterprises a crucial, proactive edge against future attacks by disrupting the very supply chain of cyber weaponry.This session equips attendees with crucial strategic understanding of the current exploit landscape, detailing the economic forces driving cybercrime. Participants gain actionable insights into how an ethical exploit market fundamentally disrupts this traditional model, demonstrating a tangible path to proactive defense. They leave with a clear vision of how leveraging pre-emergent intelligence can shift the attacker-defender power balance, significantly reduce zero-day exposure, and revolutionize their organization's overall cybersecurity posture, moving beyond reactive measures to establish a truly resilient defense. This is essential, forward-looking knowledge for every security professional.

Presenter:

The Quantum Question – Preparing Financial Systems for the Next Cyber Leap
  • 14:30
  • Wed
  • 03 Dec
Stage: Financial Summit

Session Type: Fireside Chat

Explore the implications of quantum computing for encryption, risk, and the future of secure financial transactions.

Presenter:

The Last Human Hacker: What Comes After AI
  • 14:30
  • Wed
  • 03 Dec
Stage: Black Hat Campus

Session Type: Presentation

As LLMs, autonomous agents, and synthetic identities join the red team, we’re entering the post-human phase of cybersecurity. This talk explores where human intuition still outsmarts AI, and how hacking itself is evolving from breaking systems to understanding intelligence, both human and artificial. As AI learns to exploit, patch, and predict, what will define the human hacker of tomorrow?

Presenter:

Cloud Defense Reality Check - From Tactics to Tenets
  • 14:35
  • Wed
  • 03 Dec
Stage: Executive Summit

Session Type: Presentation

Cloud is accelerating, ML is everywhere, and recovery is costly. This keynote reframes the game around the first principles and previews ten plays that help security teams reduce noise, lower impact, and move faster.

Presenter:

Cisco AI Defense - End-to-End Protection for your AI Journey
  • 14:40
  • Wed
  • 03 Dec
Stage: Sponsored Briefings

Session Type: Presentation

As organizations increasingly adopt and develop AI applications, ensuring robust safety and security is essential. Cisco AI Defense provides comprehensive protection by automatically identifying third-party AI applications in use, enabling organizations to manage access, guard against threats, and prevent data loss. For organizations developing AI, Cisco AI Defense detects AI assets, assesses model vulnerabilities, and deploys real-time guardrails to safeguard both applications and customers. This session will highlight how Cisco AI Defense enables organizations to innovate with AI while maintaining the highest standards of security and compliance.

Presenter:

Beyond Rules: How Behavioural AI Is Redefining Threat Detection
  • 14:40
  • Wed
  • 03 Dec
Stage: Deep Dive

Session Type: Presentation

Traditional detection systems rely on static rules and known indicators that today’s attackers have learned to evade. Behavioural AI takes a fundamentally different approach by analyzing the unique communication patterns of people and organisations to define what “normal” looks like and surface even the most subtle anomalies.In this session, Patricia Titus, CISO at Abnormal AI, will share how behaviour-based detection eliminates blind spots, adapts continuously, and improves threat visibility without relying on static rules. You’ll learn:Why rules-based systems fail to stop today’s advanced attacks.How behavioral AI reduces false positives by understanding context and intent.The measurable outcomes you can expect by implementing a behaviour-based defence system.

Presenter:

Breaking the Harmony: Offensive Testing of HarmonyOS NEXT Applications with Harm0nyz3r & DVHA
  • 14:40
  • Wed
  • 03 Dec
Stage: Arsenal 3

Session Type: Demo

Jorge has a strong background in cybersecurity with more than 15 years of wide experience in cybersecurity and assuming the role of Security Leader at DEKRA. In addition, Jorge is an appointed expert from ENISA for different topics related to ICT certification including ICT products, cloud, and AI. He participates in different security working groups (CSA Matter, Cloud Security Alliance, Linux Foundation and others) and standardization activities.

Presenter:

IPTI - IP Threat Intelligence
  • 14:40
  • Wed
  • 03 Dec
Stage: Arsenal 2

Session Type: Demo

Every device connected to the internet is inherently tied to an IP address— a unique numerical identifier assigned to each device within a computer network. In real-world scenarios, especially during product development, integration with third-party services often requires IP whitelisting to allow access to internal systems. However, this practice introduces security risks, making it imperative for security engineers to audit and validate the IP address reputation beforehand.While several trusted threat intelligence platforms such as VirusTotal, AbuseIPDB, AlienVault, and ThreatBook provide IP reputation services, relying on a single source is often insufficient due to inconsistent or outdated data. To overcome these limitations, IPTI – IP Threat Intelligence Tool was developed. IPTI aggregates reputation data from multiple reputable sources and enriches the analysis with additional context such as open port detection, server metadata, privacy indicators, and PTR record evaluation. These insights are then synthesized into a comprehensive risk-based scoring system, providing a more accurate and actionable assessment. IPTI is designed to be a practical and customizable tool to support security engineers in network access control and threat validation.

Presenter:

Silent Signals: The AirBleed Evolution
  • 14:40
  • Wed
  • 03 Dec
Stage: Arsenal 1

Session Type: Demo

AirBleed has evolved from a stealthy Bluetooth exploit into a versatile wireless attack platform capable of delivering custom payloads across a variety of devices and platforms. This session demonstrates how AirBleed leverages log stream parsing, device communication channels, and real-time payload injection to turn everyday wireless devices into attack vectors.

Presenter:

Examining the Correlation between AI-Driven Risk Management, Customer Experience and Customer Trust
  • 14:55
  • Wed
  • 03 Dec
Stage: Financial Summit

Session Type: Presentation

An exploration into reducing fraud while enhancing customer trust.

Presenter:

Converging Threat Intelligence, Fraud Prevention, and Brand Protection to Secure the Digital Enterprise
  • 14:55
  • Wed
  • 03 Dec
Stage: Executive Summit

Session Type: Sponsored

Enterprises today face a rapidly shifting threat landscape where cybercriminals blend phishing, fraud schemes, and brand impersonation campaigns into multi-stage attacks. These threats exploit not just technical vulnerabilities but also human trust, eroding customer confidence and causing reputational and financial damage at scale.This session will demonstrate how converging Threat Intelligence, Fraud Prevention, and Brand Protection empowers organizations to proactively identify and mitigate these risks. By correlating data from open, deep, and dark web sources with real-time fraud signals and brand abuse monitoring, organizations can achieve a holistic defense posture that goes beyond traditional silos.Through real-world case studies from the GCC and global markets, attendees will learn:- How modern adversaries orchestrate fraud and brand exploitation campaigns.- Why siloed defense strategies fail against converged threats.- Practical methods to integrate threat intelligence, fraud detection, and brand protection into enterprise security operations.The session provides actionable insights for CISOs, threat hunters, and fraud teams seeking to secure their digital enterprise against today’s most sophisticated and evolving cyber threats.

Presenter:

Optimal Offensive Security Programs
  • 15:00
  • Wed
  • 03 Dec
Stage: Briefings 1

Session Type: Presentation

Offensive security plays a crucial role in cybersecurity by identifying and exploiting system vulnerabilities. However, current practices often contain gaps that diminish the effectiveness of these assessments. This presentation will examine these gaps and provide strategies to optimize offensive security efforts.

Presenter:

Winning the AI Arms Race in Cyber
  • 15:00
  • Wed
  • 03 Dec
Stage: Sponsored Briefings

Session Type: Presentation

Cybersecurity has entered a new arms race, driven by artificial intelligence. Attackers are now routinely using AI to enhance the sophistication and speed of their attacks. In this session, we'll examine practical, real-world examples of how international hacker groups, including Rhysida and Lapsus$, have incorporated AI techniques into their cyber operations.We'll then look at specific cases where defenders successfully leveraged AI-based detection and response tools to neutralize these threats. Drawing from fresh, first-party research and detailed incident analyses, we'll highlight real-world best practices for preparing and executing response plans for AI-powered security incidents, and we'll demonstrate exactly how AI can tip the balance in favor of defenders.Finally, we'll explore emerging advancements in agentic AI technology and discuss their implications for cybersecurity strategy. Attendees will leave with actionable insights on how to effectively integrate AI into their security programs and stay ahead in this rapidly evolving landscape.

Presenter: