Thomas Dullien, also known under the pseudonym Halvar Flake, has been in and around the low-level computer security field since the late 1990s. He has published highly-cited papers on technical matters both practical and theoretical, pioneered at least two practices that are now industry-standard (BinDiff’ing and eBPF-based multi-runtime profiling), and given many many talks, among them a keynote at CyCon 2018 that Rob Joyce deemed a must-watch. He also founded two companies (one security-focused, acquired by Google in 2011 in response to Chinese government attacks, and another one, efficiency-focused, acquired by Elastic in 2021) and was involved in Angel investing.

Gentleman Hackers: Mikko Hypponen - Chief Research Officer, WithSecure Tomi Tuominen - Chief Security Officer, Wolt

https://www.youtube.com/watch?v=qllU_B_Rmis

OWASP Stockholm Meetup April 2025

Securing the CI in CI/CD

Risks & Threats to LLMs

Scapy in 0x30 Minutes

Offensive security in the AI revolution

Darknet Diaries Ep 156: Kill List

The dark web is full of mystery. Some of it’s just made up though. Chris Monteiro wanted to see what was real and fake and discovered a hitman for hire site which took him on an unbelievable journey.

Chris Monteiro Twitter: x.com/Deku_shrub, Website: https://pirate.london/

Carl Miller Twitter: https://x.com/carljackmiller.

Kill List podcast: https://wondery.com/shows/kill-list/

Security Fest 2024 Playlist

Security Fest 2024 Speakers

In the beginning of summer, Gothenburg becomes the most secure city in Sweden! We provide two days filled with great talks by internationally renowned speakers on some of the most cutting edge and interesting topics in technical information security! Our attendees will learn from the best and the brightest, and have a chance to get to know each other during the lunch, dinner, breaks in the sponsor area and of course the awesome after-party!

Please note that you have to be at least 18 years old to attend.

Highlights of Security Fest

• Interesting IT security talks by renowned speakers
• Breakfast sandwich, lunch and Thursday's dinner included
• Great CTF with nice prizes
• Awesome party!

Venue Security Fest is held at Elite Park Avenue Hotel in Gothenburg---

BSides Sydney 2024 playlist

BSides Sydney 2024 schedule

Risk = Hazard + Outrage: Some Risk Communication Basics (and some COVID and H5N1 comments)

Peter Sandman I give this lecture annually to Mike Osterholm's University of Minnesota graduate course on emerging infectious diseases. It's mostly my standard shtick on the basics of my approach to risk communication -- minus the Q&A at the end, which some students didn't want recorded.

SOUPS brings together an interdisciplinary group of researchers and practitioners in human-computer interaction, security, and privacy.

SOUPS 2024 Playlist

SOUPS 2024 Technical Sessions listed

These presentations was held at BSidesBUD2024 IT security conference on 23th May 2024.

ShmooCon 2025 talk videos. There are 51 videos

ShmooCon 2025 Schedule

DIFFERENT – ShmooCon is an annual east coast hacker convention hell-bent on offering three days of an interesting atmosphere for demonstrating technology exploitation, inventive software and hardware solutions, and open discussions of critical infosec issues. The first day is a single track of speed talks called One Track Mind. The next two days bring three tracks: Build It, Belay It, and Bring It On.

AFFORDABLE – ShmooCon is about high quality without the high price. Keep in mind that space is limited, and we’ve sold out quickly every year.

ACCESSIBLE – ShmooCon is held in Washington, DC at the Washington Hilton about four blocks from the DC Metro’s Dupont Circle Station. Fly into DCA, IAD, or BWI or take a train to Union Station, and you’re just a short cab ride away from the con.

ENTERTAINING – Brain melting from all the cool tech you’re learning? Be sure to check out the other events running during ShmooCon, including the Lockpick Village, ShmooCon Labs, Hack Fortress, and more.

SHMOOCON SUPPORTS THE FREE AND OPEN EXCHANGE OF INFORMATION. We are proud to have attendees with unique and diverse viewpoints on just about any topic. We want to foster the exchange of ideas among attendees and think the community benefits from inclusiveness. To that end, we are committed to providing a friendly, lively, and welcoming environment for all.

Darknet Diaries EP 154: Hijacked Line

Conor Freeman (x.com/conorfrmn) stole money online. Lots of it. In this episode we talk with him, and hear how he did it, why he did, and what he spent it on.

Conor’s website: https://conorfreeman.ie/

Conor’s X: https://x.com/conorfrmn

The Cost of an Incident - ShmooCon 2025 by @TindrasGrove

"It covers some of the lessons we've learned at from cyber insurance claims about why some incidents are more expensive than others, and what organizations can do about it. "

BlinkenCity: Radio-Controlling Street Lamps and Power Plants

A significant portion of Europe's renewable energy production can be remotely controlled via longwave radio. While this system is intended to stabilize the grid, it can potentially also be abused to destabilize it by remotely toggling energy loads and power plants.

In this talk, we will dive into radio ripple control technology, analyze the protocols in use, and discuss whether its weaknesses could potentially be leveraged to cause a blackout, or – more positively – to create a city-wide Blinkenlights-inspired art installation.

With three broadcasting towers and over 1.3 million receivers, the radio ripple control system by EFR (Europäische Funk-Rundsteuerung) GmbH is responsible for controlling various types of loads (street lamps, heating systems, wall boxes, …) as well as multiple gigawatts of renewable power generation (solar, wind, biogas, …) in Germany, Austria, Czechia, Hungary and Slovakia.

The used radio protocols Versacom and Semagyr, which carry time and control signals, are partially proprietary but completely unencrypted and unauthenticated, leaving the door open for abuse.

This talk will cover:

• An introduction to radio ripple control
• Detailed analysis of transmitted radio messages, protocols, addressing schemes, and their inherent weaknesses
• Hardware hacking and reversing
• Implementation of sending devices and attack PoCs
• (Live) demonstrations of attacks
• Evaluation of the abuse potential
• The way forward

Licensed to the public under http://creativecommons.org/licenses/by/4.0

BSidesNYC 2024 playlist

BSidesNYC 2024 schedule

38C3: Illegal Instructions

(English and German language talks)

The 38th Chaos Communication Congress (38C3) takes place in Hamburg, 27.-30.12.2024, and is the 2024 edition of the annual four-day conference on technology, society and utopia organised by the Chaos Computer Club (CCC) and volunteers. Congress offers lectures and workshops and various events on a multitude of topics including (but not limited to) information technology and generally a critical-creative attitude towards technology and the discussion about the effects of technological advances on society.

https://events.ccc.de/congress/2024/

GDPR Urdu Video Lectures part 1

GDPR Urdu Video Lectures part 2

Take an incredible journey through the planning and execution of a heist, and what that means to your brain and it's chemicals.

Darknet Diaries host Jack Rhysider blends the why with the what and how in this fun and fascinating Keynote presentation for SAINTCON 2024.

SAINTCON 2024 - Keynote - Jack Rhysider

BSidesLisbon 2024 playlist

BSidesLisbon website

OWASP Stockholm Meetup Oct 2024 - Secure Software Development Evening

part 1 - principles of secure development

part 2 - Application security: AI generated code

OWASP Stockholm website

BSides Ottawa 2024 Schedule

BSides Ottawa 2024 videos

• BSides Ottawa 2024 - Day 1 Keynote and Speakers
• BSides Ottawa 2024 - Day 2 Keynote and Speakers

Te invitamos a seguir la Conferencia de Ciberseguridad 8.8 BSIDES 2024 SUR, un evento pionero que une dos de las más grandes conferencias de ciberseguridad en Chile con el propósito de democratizar el conocimiento técnico y promover el acceso a la información.

BSIDES Cybersecurity Conference SUR 2024 Livestream

CYBERWARCON is a one-day conference in Arlington, VA focused on the specter of destruction, disruption, and malicious influence on our society through cyber capabilities. CYBERWARCON is not a hacker conference, or an ICS conference, or an international policy conference. The central purpose of this conference is to identify and explore threats. Participants and attendees come from a spectrum of backgrounds including the military and government, academia, the media, and the private sector.

CYBERWARCON 2024 Agenda

CYBERWARCON 2024 Playlist

BSidesPDX 2024 Schedule from the website

BSidesPDX 2024 Playlist

BSides Portland is a tax-exempt charitable 501(c)(3) organization founded with the mission to cultivate the Pacific Northwest information security and hacking community by creating local inclusive opportunities for learning, networking, collaboration, and teaching.

BSides PDX on Mastodon

Darknet Diaries: Ep 152: Stacc Attack

Jarett Dunn, AKA StaccOverflow, stole millions of dollars from a website called Pump Fun, and he wanted to do it in the most dramatic and theatrical way he could. His big heist is known as the “Stacc Attack”.