EuskalHack Security Congress VIII
EuskalHack Security Congress VIII
20-21 June 2025
Olarain Resicence Hall
Donostia
TOP-LEVEL PRESENTATIONS
We pay special attention in the choice of talks, especially valuing their originality and contribution to the community.
UNIQUE ENVIRONMENT
From EuskalHack we are doing our best to make - one more year - a memorable congress for the attendees.
REDUCED BY CHOICE
Since our constitution, we have opted for a reduced congress in order to maximise the best experience for the attendees.
PARTICIPATION AND COLLABORATION
We encourage collective activities such as hackathons, workshops and cybersecurity challenges.
YOUR ATTENDANCE, YOUR RULES
Aware of your privacy, this congress does not give the data of its attendees to third parties.
NOT-FOR-PROFIT
Under our partnership philosophy, this congress is possible thanks to the countless hours of partners and sponsors.
] PROGRAM [
Registration for attendees will open at 8:15 a.m. Please come on time to avoid collapsing the accreditation system.
Remember that if you are unemployed or under 25 years of age you must reliably accredit it along with your entrance.
FRIDAY, 20 JUNE
| HOUR | TALK | LANG | SPEAKER | |
|---|---|---|---|---|
| 09:00h - 09:15h | Presentation and opening of the Congress | [ES][EN] |
|
|
| 09:15h - 10:00h | Grabación de llamadas en Android: Una perspectiva ofensiva | [ES] |
|
|
| 10:00h - 10:20h | Hemo sido engañIAdo | [ES] |
|
|
| 10:20h - 11:00h | Lumma Stealer: El Auge del Malware-as-a-Service y la Industria del Cibercrimen | [ES] |
|
|
| 11:00h - 11:30h | BREAK | |||
| 11:30h - 12:15h | Exploring Browser Permissions and Exploiting Permission Hijacking | [ES] |
|
|
| 12:15h - 13:00h | In-Depth Study Of Linux Rootkits: Evolution, Detection, And Defense | [EN] |
|
|
| 13:00h - 13:20h | Q-protect: protección post-cuántica y debilidades en redes 5G | [ES] |
|
|
| 13:20h - 14:00h | GBounty: Advancing Multi-step web vulnerability scanner | [ES] |
|
|
| 14:00h - 15:30h | LUNCH | |||
| 15:30h - 16:15h | PLC LAN Party: Sistemas Obsoletos y Redes Caóticas | [ES] |
|
|
| 16:15h - 16:35h | Leaks, leaks, and more leaks: survival in turbulent times | [EN] |
|
|
| 16:35h - 17:20h | All cops are broadcasting - life after TETRA:BURST | [EN] |
|
|
| 17:30h - 19:00h | EUSKALHACK'S 10TH ANNIVERSARY CELEBRATION PARTY | |||
| 20:00h - 04:00h | Hackatón Gau-Hack | [ES][EN] |
|
|
SATURDAY, 21 JUNE
| HOUR | WORKSHOP | LANG | SPEAKER | REGISTER |
|---|---|---|---|---|
| 09:00h - 11:00h | Pentesting a la autenticación biométrica | [ES] |
|
MORE INFO |
| 09:00h - 11:00h | GBounty: Automatizando la detección avanzada de vulnerabilidades web. | [ES] |
|
MORE INFO |
| 09:00h - 11:00h | Agente Smith: Laboratorio de IA con Instinto de Caza | [ES] |
|
MORE INFO |
| 09:00h - 11:00h | La Máquina de Ruido: Kubernetes en Modo Fantasma | [ES] |
|
MORE INFO |
| 11:00h - 11:30h | BREAK | |||
| HOUR | TALK | LANG | SPEAKER | |
| 11:30h - 12:15h | Endpoint Evasion: TTPs en User Mode y Kernel Mode | [ES] |
|
|
| 12:15h - 12:35h | Creando herramientas que permiten relocalizar datos y poner en riesgo nuestra privacidad | [EN] |
|
|
| 12:35h - 13:20h | Timos & Cia.: Desvelando los entresijos de Telekopye | [ES] |
|
|
| 13:20h - 14:45h | LUNCH | |||
| 14:45h - 15:30h | Confesiones y anécdotas de un ex-APT | [ES] |
|
|
| 15:30h - 15:50h | Detección de ransomware mediante análisis de tráfico | [ES] |
|
|
| 15:50h - 16:35h | Hacking cranes mama | [ES] |
|
|
| 16:35h - 17:00h | Cybersecurity Award and closing | [ES][EN] |
|
|
] WORKSHOPS [
Pentesting a la autenticación biométrica
Speaker: Ignacio Brihuega
This workshop will show how it is possible to clone the voiceprint and facial expression (deepfake) of an individual through an audio fragment or photo in order to bypass authentication systems.
RegisterGBounty Hands-on Workshop: Automating Advanced Web Vulnerability Detection
Speaker: Eduardo García
In this hands-on workshop, we'll explore GBounty in detail. You'll learn how to create custom profiles in Golang, automate advanced pentesting processes, minimize false positives, and optimize your pentesting time.
RegisterAgente Smith: Laboratorio de IA con Instinto de Caza
Speaker: Asier Rohde
Workshop focused on teaching how to create autonomous agents with artificial intelligence and open source tools capable of generating social engineering attacks.
RegisterLa Máquina de Ruido: Kubernetes en Modo Fantasma
Speaker: Jorge Calleja
In this workshop we explore how to simulate legitimate and illegitimate activity in a Kubernetes cluster using a network of bots acting as developers/devops and insiders.
Register] PATROCINADORES [
PLATINO
GOLD
SILVER
BRONZE
] COLABORADORES [
] COLABORADORES LOGÍSTICOS [
] 10TH ANNIVERSARY OF EUSKALHACK [
The celebration of the 10th anniversary of the EuskalHack Association is just around the corner!
On Friday 20th June, after a day full of inspiring talks and learning (prior to the Hackathon), we invite you to continue celebrating with us a unique event, which will take place in the Olarain Hall.
Come and enjoy an exclusive cocktail party, surrounded by professionals and colleagues from the sector, where we will have the best music, while a renowned DJ sets the rhythm to an evening that promises to be unforgettable. It will be the perfect time to relax and socialise, celebrating with us a decade in community.
We would like to count on you for this special event for us, surrounded by the best company and moments that will remain engraved in your memory. Don't miss it, because this anniversary is not only celebrated, it is lived!
See you at the party!
] EUSKALHACK CYBERSECURITY AWARD 2025 [
In this eighth edition we want to continue to recognise one of the people whose contribution to cybersecurity has been meritorious in the last year. At EuskalHack we would like to be able to distinguish all those individuals, often anonymous, whose efforts have been more than beneficial to the cybersecurity community, professional environment, and citizens.
The deadline for nominations is open until 31 March. by sending a private message, a post on our social networks, or a simple email. We will draw two tickets to the congress from among all the applications received.
At the end of the congress, we will award a prize to the person whose contribution we consider to be the most significant.
We look forward to your proposals!
] GAU-HACK [
In this eighth edition we would like to once again offer ESC attendees a relaxed space to share experiences, knowledge and, of course, a good time.
Throughout the afternoon-evening of Friday June 20 you can join "Gau-Hack", a space set up with tables, power strips and everything you need to come and meet people and have fun with any topic related to hacking.
To this end, we will provide attendees with various cybersecurity challenges, and as a novelty, we will have a space where they can give short informal talks.
DATES OF INTEREST
| 02/06/2025 | Creation of the Telegram group to start warming up the engines. |
| 20/06/2025 | Day of the event |
Planned Schedule
| 20:00 | * OLARAIN (Rooms UNUS & DUO) | Opening of accesses. |
| 04:00 | * OLARAIN (Rooms UNUS & DUO) | Eviction. |
* Capacity limited to 50 participants, with priority given on a first-come, first-served basis.
] SPONSOR THE EVENT [
Being part of EuskalHack as a sponsoring company means obtaining presence and repercussion in a unique and singular environment, allowing you to address a message to a specific public oriented to computer security, making it easier to consolidate your brand and credibility in an event of relevance for the community.
If you would like to take part in this congress, please contact us as soon as possible.
] LOCATION [
OLARAIN RESIDENCE HALL
Paseo de Ondarreta 24
Donostia - San Sebastián | Gipuzkoa
] DISCOUNTS[
ACCOMMODATION
We have agreed a special discount with the Olarain Residence,
where the congress itself will take place, for attendees:
ATTENTION: High demand for hotel occupancy in the city.
Direct reservations via email: [email protected]
Indicating the matter: "Reserva EuskalHack + Congress entrance locator"
Offer subject to availability
booking
+ Info
BUS
15% off.
Go to alsa.es
Select the Destination
choose the dates
Use the Promo Code.
Time selection
TRAIN
5% off.
Tell us your Locator
Go to renfe.com
Select the Destination
Choose dates and times
Use the Promo Code.
BUY TICKET
This ticket gives you access to the congress for both days, Welcome Pack, Hackathon, and other congress initiatives.
* REDUCED TICKET:
Unemployed and under 25 years of age (They must certify it reliably in the access control).
Price list:
[SECTION 1] > 17 of February to 17 of March : 80€ [SECTION 2] > 18 of March to 31 of May: 110€ [SECTION 3] > 01 of June to 15 of June: 160€
EuskalHack Security Congress is an initiative of the first Ethical Hacking Association of Euskadi, a non-profit organisation constituted in Donostia and made up of various professionals linked to computer security research and computer forensics
Our goal is to promote the community and culture of digital security to any type of interested public (experts or beginners who want to enter the world of security), through the promotion and dissemination of mainly technical knowledge.
This exclusive congress is shaping up to be the most important in the Basque Country, with an estimated capacity of 200 people in this eighth edition.