We pay special attention to the choice of talks, especially valuing their originality and contribution to the community.
Since our constitution, we have opted for a reduced congress in order to guarantee the best experience for the attendees.
Under our philosophy of association, this congress is made possible by the countless hours of partners and sponsoring companies.
From EuskalHack we are putting all our efforts to make - one more year - an unforgettable congress for all the attendees.
We encourage attendees to participate in the collective activities such as the hackathon, workshops, or cybersecurity challenges.
Remember that if you are a student you will have to prove it with your ticket.
FRIDAY, 23 JUNE
|09:15h - 09:30h||Presentation and opening of the Congress||[ES][EN]|
|09:30h - 10:15h||Abusing ETCD: Injecting resources into (almost) unrestricted k8s||[ES]|
|10:15h - 11:00h||Offensive Tracking to take in (L)users||[ES]|
|11:00h - 11:30h||BREAK|
|11:30h - 12:15h||Symbolic execution for security researchers||[EN][ES]|
|12:15h - 13:00h||Modern Attacks against Modern Solutions||[EN]|
|13:00h - 13:30h||V2X Hacking: New Horizons||[ES]|
|13:30h - 15:00h||LUNCH|
|15:00h - 15:30h||Reversing vs desarrollo de malware: ¿Ratón o gato?||[ES]|
|15:30h - 16:15h||Testing invisible watermarks based on DFT||[ES]|
|16:15h - 17:00h||The ins and outs of Bluetrust||[ES][EN]|
SATURDAY, 24 JUNE
|09:00h - 11:00h||Malware analysis with CAPE sandbox - crash course||[ES][EN]|
|09:00h - 11:00h||Practical Explotation with Kraken||[ES]|
|09:00h - 11:00h||ReconFTW: a framework for assets discovery and more||[ES]|
|09:00h - 11:00h||Offensive Logon Sessions - How to find them and how to protect them||[ES]|
|11:00h - 11:30h||BREAK|
|11:30h - 12:15h||Modern binary diffing: Diaphora 3.0||[EN][ES]|
|12:15h - 13:00h||Understanding a Payload's Life||[ES]|
|13:00h - 13:45h||What we did wrong while making Flipper Zero||[EN]|
|13:45h - 14:15h||Cybersecurity Award and closure||[ES][EN]|
|14:15h - 17:00h||FREE TIME|
|17:00h - 06:00h||Hackathon Gau-Hack||[ES]|
Speaker: Andriy Brukhovetskyy
The aim of this workshop is to enable attendees to understand and set up an automated malware analysis environment, with best practices and recommendations on how it works inside, in order to take full advantage of all its resources.Register
Speaker: Raul Caro
The aim of the workshop is to dive into the inner workings of Kraken, modify and add new components (modules/agents), as well as solve scenarios where post-exploitation via the web is difficult. In short: a hands-on Kraken training!Register
Speaker: Alexis Fernández
ReconFTW is becoming an industry standard for asset discovery by Red Team, Pentesters or Bug Hunters. In this workshop we will analyze in depth how reconFTW works, the configuration options it has and how we can adapt it to our needs or those of our clients.Register
Speaker: Jorge Escabias
During this workshop, students will understand the different existing ways to access a machine to interact with it remotely, when these accesses are cached, what protections Windows offers to avoid it, how to delete these cached credentials and, finally, what a pentester must understand to avoid it during an exercise.Register
In this sixth edition we want to continue to recognise one of the people whose contribution to cybersecurity has been meritorious in the last year. At EuskalHack we would like to be able to distinguish all those individuals, often anonymous, whose efforts have been more than beneficial to the cybersecurity community, professional environment, and citizens.
WINNER: Pavel Zhovner
In this sixth edition we would like to offer ESC attendees a relaxed space to share experiences, knowledge and of course a good time.
Throughout the afternoon/evening of Saturday 24th June you will be able to join our hackathon "gau-hack" where you will work in groups on a series of projects related to hacking proposed both by the organisation and by yourselves.
|10/02/2023||Hackathon general publication.|
|15/02/2023||Presentation of the Collaborative CTF initiative and start of the receipt of proofs.|
|01/06/2023||Sharing and selection of projects in the Telegram group.|
|24/06/2023||Day of the event.|
|17:00||* OLARAIN (UNUS & DUO)||Reception of participants.|
|18:30||* OLARAIN (UNUS & DUO)||Exhibition of projects, creation of groups, and start of the Gau-Hack.|
|06:00||* OLARAIN (UNUS & DUO)||Eviction.|
* Capacity limited to 50 participants, prioritising by order of registration to the event.
Being part of EuskalHack as a sponsoring company means obtaining presence and repercussion in a unique and singular environment, allowing you to address a message to a specific public oriented to computer security, making it easier to consolidate your brand and credibility in an event of relevance for the community.
If you would like to take part in this congress, please contact us as soon as possible.
This ticket gives you access to the congress for both days, Welcome Pack, Hackathon, and other congress initiatives.
* Reduced Ticket: Students and unemployed (They must prove it irrefutably at the entrance)
[SECTION 1] > 01 of March to 31 of March : 70€ [SECTION 2] > 01 of April to 31 of May: 80€ [SECTION 3] > 01 of June to 15 of June: 95€
EuskalHack Security Congress is an initiative of the first Ethical Hacking Association of Euskadi, a non-profit organisation constituted in Donostia and made up of various professionals linked to computer security research and computer forensics
Our goal is to promote the community and culture of digital security to any type of interested public (experts or beginners who want to enter the world of security), through the promotion and dissemination of mainly technical knowledge.
This exclusive congress is shaping up to be the most important in the Basque Country, with an estimated capacity of 200 people in this sixth edition.