Another talk announcement!

🟣🤖 𝗚𝗢𝗢𝗗𝗕𝗬𝗘 𝗣𝗨𝗥𝗣𝗟𝗘 𝗧𝗘𝗔𝗠, 𝗛𝗘𝗟𝗟𝗢 𝗣𝗨𝗥𝗣𝗟𝗘 𝗕𝗢𝗧𝗦 - 𝗣𝗔𝗧𝗥𝗜𝗖𝗞 𝗠𝗞𝗛𝗔𝗘𝗟 & 𝗥𝗔𝗟𝗣𝗛 𝗘𝗟 𝗞𝗛𝗢𝗨𝗥𝗬 🛡️⚔️

What if purple teaming could run itself? 🚀 This talk reveals an AI driven framework that simulates real world attacks, uncovers detection gaps, and continuously strengthens your defenses with zero manual effort. It's more than automation. It is a smart, self evolving security cycle where offense and defense work together in real time to stay ahead of threats.

Patrick Mkhael https://pretalx.com/bsidesluxembourg-2026/speaker/WHMGFD/ is an Offensive Security R&D lead with a strong blue team foundation, now focused on red teaming, cloud pentesting, and building tools for adversary emulation and automated security testing.

Ralph El Khoury https://pretalx.com/bsidesluxembourg-2026/speaker/X9QCJN/ is a red teamer and CVE hunter with a passion for breaking AD and web apps. Teaches kids to question everything, starting with default credentials.

📅 Conference dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg2026 #CyberSecurity #PurpleTeam #RedTeam #BlueTeam #AI

⚡⚡⚡ Lightning Talk Announcement! ⚡⚡⚡

📧💻 𝗦𝗖𝗔𝗟𝗜𝗡𝗚 𝗗𝗘𝗙𝗘𝗡𝗖𝗘 - 𝗙𝗜𝗡𝗗𝗜𝗡𝗚 𝗥𝗘𝗗𝗩𝗗𝗦 𝗙𝗥𝗢𝗠 𝗔 𝗣𝗛𝗜𝗦𝗛𝗜𝗡𝗚 𝗘𝗠𝗔𝗜𝗟 - 𝗘𝗟𝗟𝗜𝗢𝗧 𝗣𝗔𝗥𝗦𝗢𝗡𝗦 🔍🔥

A phishing email isn’t just a threat, it’s a starting point. In this 5-minute lightning talk, Elliot Parsons shows how to turn a single report into a chain of attacks, tracking attackers across domains, IPs, certificates, and links.

Elliot Parsons https://www.linkedin.com/in/elliot-parsons-4ba72140 is a cyber threat intelligence consultant at AmeXio. He is from New Zealand with a background in Financial Services, Technology Services and Government organisations. His expertise is in threat intelligence, threat hunting, reverse engineering, malware analysis, and incident response.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #Phishing #CyberDefense #ThreatIntelligence #OSINT #RedTeam

🧠Turn your team into threat hunters, one dice roll at a time 💥

🎲 𝗗𝗨𝗡𝗚𝗘𝗢𝗡𝗦 & 𝗗𝗥𝗔𝗚𝗢𝗡𝗦: 𝗧𝗛𝗘 𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗣𝗢𝗪𝗘𝗥 𝗧𝗢𝗢𝗟 𝗬𝗢𝗨 𝗗𝗜𝗗𝗡’𝗧 𝗞𝗡𝗢𝗪 𝗬𝗢𝗨 𝗡𝗘𝗘𝗗𝗘𝗗 - Klaus Agnoletti ( @klausagnoletti ) & Glen Sorensen 🛡️

Roleplaying isn’t just for nerds, it’s a proven method for building real security muscle. This talk reveals how structured tabletop roleplaying games unlock deeper learning, improve team cohesion, and turn abstract security concepts into lived experience. By simulating incident response, threat modeling, and zero-trust design through narrative-driven play, teams develop adaptive thinking, shared mental models, and faster decision-making under pressure.

Klaus Agnoletti https://www.linkedin.com/in/agnoletti/ is a freelance storytelling cyber security advisor, co-founder of BSides København, neurodiversity advocate, and architect of playful security transformation through narrative and gamification.

Glen Sorensen https://pretalx.com/bsidesluxembourg-2026/speaker/J3PRCC/ is a Solutions Engineer at DeleteMe, former vCISO, and incident master for HackBack Gaming. 20+ years in security engineering, GRC, and operations. Passionate about OSINT, AI-powered social engineering, and using tabletop games to train real-world response.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #GamifiedSecurity #CyberTraining #IncidentResponse #RolePlaying #SecurityLeadership #InfosecEducation #PlayToLearn

Another talk for BSides Luxembourg!

💥🔥 𝗧𝗛𝗘 𝗪𝗛𝗜𝗦𝗧𝗟𝗘𝗦 𝗚𝗢 𝗪𝗢𝗢 𝗪𝗢𝗢: 𝗦𝗜𝗘𝗠 𝗔𝗟𝗘𝗥𝗧𝗦, 𝗧𝗛𝗥𝗘𝗔𝗧 𝗗𝗘𝗧𝗘𝗖𝗧𝗜𝗢𝗡 𝗔𝗡𝗗 𝗧𝗨𝗡𝗜𝗡𝗚 𝗨𝗡𝗡𝗘𝗖𝗘𝗦𝗦𝗔𝗥𝗬 𝗡𝗢𝗜𝗦𝗘 - 𝗠𝗘𝗟𝗜𝗡𝗔 𝗣𝗛𝗜𝗟𝗟𝗜𝗣𝗦 ( @tx_princess ) 🕵️‍♀️⚔️

Security teams don’t miss alerts because they’re careless, they miss them because their SIEM never stops yelling. This talk shows how poorly timed, constant, or context-free alerts become meaningless noise and how simple fixes like throttling, prioritization, and timing can turn a SIEM into a tool that actually gets noticed when it matters.

Melina Phillips https://www.linkedin.com/in/melinaphillips-cissp/ is an Offensive Security Engineer with over 10 years in IT and 6 years in cybersecurity, specializing in security operations, incident detection, adversary simulation, and endpoint compromise. She has presented at BSides Cambridge, Security Fest, BruCon, LeHack, HackLu, and BlackAlps.

📅 Conference dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg2026 #CyberSecurity #OffensiveSecurity #ThreatDetection #LinuxSecurity #Infosec

BSides Luxembourg talk announcement!

🐧🚨 𝗡𝗢𝗧 𝗦𝗢 𝗛𝗔𝗥𝗠𝗟𝗘𝗦𝗦: 𝗧𝗛𝗘 𝗛𝗜𝗗𝗗𝗘𝗡 𝗪𝗢𝗥𝗟𝗗 𝗢𝗙 𝗟𝗜𝗡𝗨𝗫 𝗣𝗔𝗖𝗞𝗘𝗥𝗦 𝗔𝗡𝗗 𝗗𝗘𝗧𝗘𝗖𝗧𝗜𝗢𝗡 𝗖𝗛𝗔𝗟𝗟𝗘𝗡𝗚𝗘𝗦 - 𝗠𝗔𝗦𝗦𝗜𝗠𝗢 𝗕𝗘𝗥𝗧𝗢𝗖𝗖𝗛𝗜 🛡️🔍

Linux packers and loaders are a sneaky blind spot in cybersecurity. They hide code with encryption and obfuscation, then run it straight from memory to dodge detection. This talk dives into the “hARMless” ARM64 packer, showing off tricks like layered encryption and direct syscalls, while exposing a harsh truth: many defenses on Linux barely see it coming.

Massimo Bertocchi https://pretalx.com/bsidesluxembourg-2026/speaker/SU38N8/ Massimo Bertocchi is a Zürich-based Threat Hunter and Detection Engineer with dual Master’s degrees from KTH Royal Institute of Technology and Aalto University, recognized for his award-winning research uncovering covert C2 channels in Microsoft Teams that enable high-speed data exfiltration and expose critical gaps in enterprise security monitoring.

📅 Conference dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/
#BSidesLuxembourg2026 #CyberSecurity #ThreatHunting #MalwareAnalysis #CloudSecurity #DetectionEngineering

⚡⚡⚡ Lightning Talk Announcement! ⚡⚡⚡

✨ 𝗠𝗔𝗚𝗜𝗖-𝗥𝗦: 𝗔 𝗠𝗘𝗠𝗢𝗥𝗬-𝗦𝗔𝗙𝗘, 𝗟𝗜𝗕𝗠𝗔𝗚𝗜𝗖-𝗖𝗢𝗠𝗣𝗔𝗧𝗜𝗕𝗟𝗘 𝗙𝗜𝗟𝗘 𝗧𝗬𝗣𝗘 𝗗𝗘𝗧𝗘𝗖𝗧𝗜𝗢𝗡 𝗘𝗖𝗢𝗦𝗬𝗦𝗧𝗘𝗠 - Quentin Jerome 🧩 (@qjerome)

File type detection just got a memory-safe upgrade — in Rust. In this talk, Quentin Jerome shows how Magic-rs brings libmagic’s power to modern, safe code — with Python bindings, a CLI tool called wiza, and real-world compatibility.

Quentin Jerome https://www.linkedin.com/in/quentin-jerome-00a8a074 is a Rust developer at CIRCL. Inspired by his background in incident response and threat detection, he builds open-source security tools to solve practical problems. His main interests include threat detection, bug hunting, and building tools that help the security community.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #Rust #FileDetection #MemorySafety #OpenSource #CyberSecurity

⚡⚡⚡ Lightning Talk! ⚡⚡⚡
🪦🔍𝗪𝗛𝗔𝗧 𝗜𝗦 𝗧𝗛𝗘 𝗗𝗔𝗥𝗞 𝗪𝗘𝗕 𝗧𝗔𝗟𝗞𝗜𝗡𝗚 𝗔𝗕𝗢𝗨𝗧? - 𝗗𝗔𝗥𝗞 𝗝𝗔𝗥𝗚𝗢𝗡 𝗗𝗘𝗧𝗘𝗖𝗧𝗜𝗢𝗡 𝗔𝗡𝗗 𝗜𝗗𝗘𝗡𝗧𝗜𝗙𝗜𝗖𝗔𝗧𝗜𝗢𝗡 - Laura Bernardy 🔐🕵️‍♂️
The dark web hides in code, and its language is built to confuse. In this talk, Laura Bernardy shows how NLP can decode the slang, jargon, and encrypted phrases used by cybercriminals

Laura Bernardy https://lu.linkedin.com/in/laura-bernardy-a95315177 is a PhD candidate at SnT Luxembourg, researching dark web content and cyber threat intelligence using natural language processing. She holds a master’s in computational linguistics and has worked on low-resource language NLP. Her work combines linguistics, cybersecurity, and AI to decode what’s being said and who’s saying it.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #DarkWeb #NLP #CyberThreatIntelligence #OSINT #Linguistics

⚡⚡⚡ Lightning Talk Announcement! ⚡⚡⚡

👀 ⚖️ 𝗛𝗢𝗪 𝗧𝗢 𝗕𝗘 𝗝𝗨𝗦𝗧 𝗧𝗛𝗘 𝗥𝗜𝗚𝗛𝗧 𝗔𝗠𝗢𝗨𝗡𝗧 𝗢𝗙 𝗣𝗔𝗥𝗔𝗡𝗢𝗜𝗗 (𝗖𝗬𝗕𝗘𝗥𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗘𝗗𝗜𝗧𝗜𝗢𝗡) - 𝗗𝗘𝗡𝗜𝗠 𝗟𝗔𝗧𝗜ć 🧠😎

Are you too relaxed? Or too paranoid? In this talk, Denim shares how to find the sweet spot where awareness protects without paralyzing. Find a perspective to to measure your security mindset.

Denim Latić https://pretalx.com/bsidesluxembourg-2026/speaker/9GTVXC/ is a security analyst and part of the CSIRT for Fondation Restena, the NREN of Luxembourg. He is passionate about raising awareness on cybersecurity issues to both small and large audiences.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #CyberSecurity #Mindset #SecurityAwareness

Here is another announcement for BSides Luxembourg!

🛠️ 𝗥𝗜𝗢𝗧 – 𝗔 𝗥𝗔𝗦𝗣𝗕𝗘𝗥𝗥𝗬-𝗕𝗔𝗦𝗘𝗗 𝗡𝗘𝗧𝗪𝗢𝗥𝗞 𝗜𝗠𝗣𝗟𝗔𝗡𝗧 𝗙𝗢𝗥 𝗥𝗘𝗗 𝗧𝗘𝗔𝗠 𝗢𝗣𝗘𝗥𝗔𝗧𝗜𝗢𝗡𝗦 - 𝗢𝗟𝗜𝗩𝗜𝗘𝗥 𝗠é𝗗𝗢𝗖 🍕🥧

A Raspberry Pi isn’t just a toy. In this talk, Olivier Médoc shows how it became a stealthy, modular network implant used in real-world red team operations, turning physical access into long-term access, bypassing MFA, and quietly exfiltrating secrets, even when the victim is unaware.

Olivier Médoc https://pretalx.com/bsidesluxembourg-2026/speaker/TGY8UJ/ is a member of the POST Cyberforce Offensive Security team. He has led offensive security missions across telecom, banking, payment systems, and ATMs. He specializes in vulnerability research, mobile and web app penetration testing, and red team operations. He also contributes to in-house security tooling and forensic investigations.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #RedTeam #RaspberryPi #NetworkImplant #AdversarySimulation #CyberSecurity

🕵️‍♂️ Trust can break Anonymity ✅🔍

🎯 𝗣𝗛𝗜𝗡𝗗𝗜𝗡𝗚 𝗔 𝗣𝗛𝗜𝗦𝗛𝗘𝗥: 𝗗𝗢𝗡’𝗧 𝗟𝗘𝗧 𝗥𝗘𝗣 𝗚𝗘𝗧 𝗬𝗢𝗨 𝗥𝗘𝗞𝗧 - 𝗘𝗟𝗟𝗜𝗢𝗧 𝗣𝗔𝗥𝗦𝗢𝗡𝗦 ✨🔥

The “as-a-service model” has become ubiquitous across the cybercrime ecosystem. Previously dominated by tight-knit, exclusive groups, cybercrime is now a distributed international marketplace of service providers and consumers. As a result, it is more resilient than ever, with the gaps left by law enforcement takedowns quickly filled by the next opportunistic teenager.

However, to operate effectively in this anonymous distributed economy, threat actors need to build a reputation to gain trust. Does this give us an opportunity?

In this presentation, Elliot Parsons discusses the importance of trust in the cybercrime ecosystem and walks through a real-world investigation involving a prominent phishing-as-a-service (PhaaS) provider. The case study illustrates that trust and OpSec do not mix, exposing threat actors to identification.

Elliot Parsons https://www.linkedin.com/in/elliot-parsons-4ba72140 is a cyber threat intelligence consultant at AmeXio. He is from New Zealand with a background in Financial Services, Technology Services and Government organisations. His expertise is in threat intelligence, threat hunting, reverse engineering, malware analysis, and incident response.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg #Phishing #CyberCrime #OSINT #ThreatIntelligence #PhaaS #HackerLife