BSides Prague
is an annual community-driven information security conference held in Prague. The event provides a platform for cybersecurity professionals, enthusiasts, and researchers to share knowledge, exchange ideas, and discuss the latest trends in the field. It's a unique opportunity to connect with like-minded individuals, expand professional networks, and stay informed about the ever-evolving cybersecurity landscape.
Evolution to Revolution
We are living in exciting times where the future approaches us non-linearly every single day. As we progress in technology, each step we take becomes longer and more impactful. However, it’s important to remember that every single invention or significant leap in history started as an evolution over time, gaining critical mass until one day it flipped into a revolution. The pace of progression speeds up, and this is especially true for the computer industry. But with great progress comes great responsibility. As the pace of innovation accelerates, we must stay sharp and vigilant to ensure that this revolution leads to balanced and responsible growth. By anticipating and mitigating risks before they become problems, we can shape a future that is not only groundbreaking but also secure and sustainable.
Venue
Gabriel Loci (Prague - Smichov)Gabriel Loci, a remarkable venue blending historical charm with contemporary innovation, stands as a testament to Prague's rich cultural heritage and its embrace of modern trends. Nestled in the historic Smchov district, this architectural gem has been transformed from a monastery into a vibrant hub for art, events, and cutting-edge technology. Its meticulously restored spaces preserve the timeless beauty of its 19th-century origins, while hosting modern exhibitions, creative conferences, and innovative projects that celebrate the intersection of tradition and progress. Gabriel Loci isn't just a place-it's an experience where history and the future converge, creating an inspiring backdrop for forward-thinking ideas and transformative connections.
Keynote speakers
|
Ondřej Vlček (Day 1)A distinguished Czech manager and philanthropist, Ondřej began his career at Avast in 1995, rising to CEO in 2019. He played a key role in developing one of the first antivirus programs for Windows and led Avast’s transformation into a global cybersecurity leader. After its merger with NortonLifeLock, he became President of Gen Digital. Currently, he is the CEO of a stealth startup, driving innovation in cybersecurity. Beyond tech, Ondřej and his wife founded the Vlček Family Foundation, supporting families affected by serious childhood illnesses. |
Vangelis Stykas (Day 2)Vangelis is the Co-founder and CTO of Atropos, a company specializing in API security. With over 15 years of experience in the information security field, he has a deep understanding of security research and development. Vangelis is also a seasoned speaker, having presented at numerous international conferences, including DEF CON, Black Hat, and OWASP AppSec. |
 |
Program
CONFERENCE DAY #1 - Thursday, April 3
| Time | Talk name | Author |
|---|---|---|
| 08:00 | Open door, registration, breakfast | |
| 08:40 | Opening talk | Martin Hron, BSides Czech |
| 09:00 | KEYNOTE: AI's House of Cards: Building Intelligent Systems on Vulnerable Foundations | Ondřej Vlček |
| 09:40 | Break | |
| 10:00 | Hacking in the Gray Zone | Marek Hencl |
| 10:00 | WORKSHOP: Unleashing the Power of Quantum Cryptography: Securing the Future of Communication | Hitesh Monga |
| 10:00 | Introductory to electronics | Marek Olejník |
| 10:50 | From Fake Colleagues to Crypto Drains: How North Korea Exploits Remote Hiring | Ondra Rojčík |
| 11:00 | Online balance: how to avoid burnout | Mgr. Markéta Homolková |
| 11:40 | SCADAsploit: a Command & Control for OT. How to break an ICS system. | Omar Morando |
| 12:30 | Lunch break | |
| 13:30 | Unmasking Malware Targeting Your Web Apps: Real-World Malware Campaign Tracking using Big Data analytics and Machine Learning clustering. | Daniel Johnston |
| 13:30 | AI Video Show! | Ondřej Svoboda |
| 13:30 | Bytes of Insight - YARA in Incident Response and Malware Hunting | Jinto Antony |
| 14:20 | Pwn the Watchdogs: Evading EDRs and Owning the Battlefield | Jan Marek |
| 15:05 | UART & JTAG theory | Ben Král, Marek Olejník |
| 15:10 | Dead Pixel: A Practical Guide to Attacking Server-Side Image Processors | Emil Lerner |
| 15:35 | Break | |
| 15:55 | Impulse 31337: From Red Teaming to Hacking Quake | Mateusz Kocielski |
| 16:45 | Evasive Maneuvers: strategies to overcome runtime detection tools | Amit Schendel, Nir Levy |
| 17:40 | Closing day #1 | |
CONFERENCE DAY #2 - Friday, April 4
| Time | Talk name | Speaker |
|---|---|---|
| 08:00 | Open door, registration, breakfast | |
| 08:40 | Opening day #2 | |
| 09:00 | KEYNOTE: Deep Strike: Crippling the Ransomware Web Infrastructure | Vangelis Stykas |
| 09:40 | Break | |
| 10:00 | Making sense of your car: Reverse engineering AUTOSAR Classic firmware | Martin Petráň |
| 10:00 | WORKSHOP: Defeating Encryption By Using Unicorn Engine | Balazs Bucsay |
| 10:00 | Introductory to electronics | Marek Olejník |
| 10:50 | Search engine marketing abuse with look in hospitality area | Tomas Krasnican |
| 10:50 | How AI Affects Our World and How We Can Use It | Sandra Burdová |
| 11:40 | Pay-to-Win C2s: Evasion TTPs of an Advanced Closed-Source Redteam Toolkit | Jan Neduchal Simone Nicchi |
| 12:30 | Lunch break | |
| 13:30 | A look at Internet of Things (IoT) hardware hacking | Deral Heiland |
| 13:30 | WORKSHOP: Security Onion Workshop | David Szili |
| 13:30 | UART & JTAG theory | Ben Král, Marek Olejník |
| 14:20 | An R&D journey: From Reflective Loading to SWAPPALA and SLE(A)PING novel in-memory shenanigans | Vincenzo Santucci |
| 15:10 | DNS Tales: The Bizzare Records | Lukas Forst Martin Řepa |
| 15:35 | Break | |
| 15:55 | From Buzzword to Battlefield: The Cybersecurity Challenges of Smart Cities | Marina Bochenkova |
| 16:35 | Panel Discussion (Sdruzeni VIA): From Resistance to Engagement: How to Implement Security Measures in Non-Profits and Beyond | Sdruzeni VIA |
| 17:40 | Closing BSides Prague 2025 | |
AFTERPARTY - Friday, April 4
| Time | Talk name | Speaker |
|---|---|---|
| 18:45 | Where no Bellingcat dares to tread: Further adventures in OSINTing Prague's very special places | Lukáš Vychopeň |
| 19:45 | Barbie: I Can Be A Cybersecurity Engineer | Kateřina Henclová |
| 20:20 | Oh Hotel No!: How A Hopeless Hooligan Helped A Homie From Homelessness To Homeownership In 9 Months | Justin Varner |
Archive 2024
website
agenda in sched
recordings
Security BSides
WiKi
in the world
@SecurityBSides
BSides Czech z.s., Czech chapter of Security BSides| IČ: 21239509