Javascript on your browser is not enabled.



Conference:  12-13 November, 2021

Pre-Conference:  10-11 November, 2021


c0c0n 2021 Agenda

10 - 13, November

10-Nov-2021 (DAY 1), TRACK 1

10-Nov-2021 (DAY 1), TRACK 2

Most of the Web Application pen testers perform vulnerability analysis from Blackbox perspective, such approach cannot guarantee complete coverage of the vulnerabilities in the applications. It is very much important to acquire knowledge on Whitebox strategies. This workshop would be beneficial for people who would like to initiate secure code review or secure code development careers in the Java web application area.

There will be 4 sessions. In the first session, people would be developing an insecure application using servlets, JSP, JDBC and MySQL. In the second and third sessions, participants would be finding and exploiting all the top10 vulnerabilities. In the final session, participants would be writing a secure code to transform the existing insecure application to a secure application.

10-Nov-2021 (DAY 1), TRACK 4

11-Nov-2021 (DAY 2), TRACK 1

11-Nov-2021 (DAY 2), TRACK 2

The objective of the workshop is to provide the audience about the basic understanding of Offensive and Defensive team fundamentals, different tools and technologies used and real time threat detection.

The objective of the workshop is to provide the audience about the basic understanding of Offensive and Defensive team fundamentals, different tools and technologies used and real time threat detection.

11-Nov-2021 (DAY 2), TRACK 3

11-Nov-2021 (DAY 2), TRACK 4

12-Nov-2021 (DAY 3), TRACK 1

Welcome Note & Journey of c0c0n

General Bipin Rawat is an alumnus of St Edward's School, Shimla and the National Defence Academy. He was commissioned on 16 Dec 1978 into the Fifth Battalion of the Eleventh Gorkha Rifles of the Infantry, the Battalion which was Commanded by his father. While graduating from the Indian Military Academy, Dehradun, he was awarded the coveted 'Sword of Honour'.
The General has a vast operational experience, having served across a wide spectrum of combat and conflict situations. He has commanded an Infantry Battalion along the Line of Actual Control in the Eastern Sector and a Rashtriya Rifles Sector in the Kashmir Valley. Soon thereafter, he went on to Command a Multinational Brigade in a Chapter VII Mission in the Democratic Republic of Congo (DRC). He was assigned to Command an Infantry Division along the Line of Control in Jammu and Kashmir and was Corps Commander in the North-East. As an Army Commander, he was responsible to oversee operations in the Desert sector, along the Western front.
General Rawat has held several important instructional and staff appointments. These include instructional tenures at the Indian Military Academy (Dehradun) and at the Junior Command Wing as the Senior Instructor. He was the General Staff Officer at Military Operations Directorate, the Colonel and later Deputy Military Secretary in the Military Secretary's Branch, the Major General General Staff of the Eastern Theatre and was also the Vice Chief of the Army Staff. The General was the Chief of the Army Staff from 31 Dec 2016 to 31 Dec 2019.
A graduate of the Defence Services Staff College (Wellington) and the Command and General Staff Course, Fort Leavenworth (USA). He has attended the Higher Command Course at Mhow and is a graduate of the National Defence College, New Delhi. Academically inclined, the General has authored several articles on National Security and Military Leadership which have been published in various Journals and Publications. He also holds two diplomas in Management and in Computer Studies. The General was awarded the 'Doctorate of Philosophy' (Ph.D) for his research on 'Military Media Strategic Studies' by the Chaudhary Charan Singh University, Meerut.
For the distinguished service rendered and valour displayed over the span of over 42 years of his entire service career, General Bipin Rawat has been conferred several Presidential Awards which include the PVSM, UYSM, AVSM, YSM, SM and the VSM. Besides these, he has been awarded the Chief of Army Staff Commendation on two occasions as also the Army Commander's Commendation. While serving with the UN in Congo, he was twice awarded the Force Commander's Commendation.
General Bipin Rawat was appointed India's first Chief of Defence Staff on 31 Dec 2019.


Resume & Career Clinic encourages students, professionals, individuals looking forward to shift their jobs; to build a strong work profile in their respective fields. Writing a Strong Curriculum Vitae (CV) is a crucial step in every individual’s search for the right internship, job, or career. Since 2018, Nullcon has been organizing Resume & Career Clinics to help advance security professional careers. It is a space where renowned experts provide one-on-one guidance to individuals on how to improvise their resumes to make them presentable and successful by unlocking their true potential.

12-Nov-2021 (DAY 3), TRACK 2

AutoSec Village

AutoSec Village

AutoSec Village

AutoSec Village

AutoSec Village

12-Nov-2021 (DAY 3), TRACK 3

12-Nov-2021 (DAY 3), TRACK 4

Adversary Village Keynote

The modern cybersecurity landscape is an escalating arms race between attackers and defenders - attackers are constantly researching and building new techniques and tools while defenders try to identify, detect, and respond to them. Using automation tools that emulate attacker methodologies, defenders can perform simple, repeatable attacks to drive their detection engineering efforts, security validation tasks, and ultimately improve processes. This entry level class will take students through the basics of setting up and using Operator to perform basic adversary emulation tasks and investigate how that can be used to create a continuous defensive evaluation process.

Read More

We all know that adversary emulation is about executing real-world TTPs to assess and improve cybersecurity. But how do we actually implement authentic TTPs, while also balancing ubiquitous project constraints such as time, budget, staff expertise, and more? This presentation will discuss how the MITRE Engenuity ATT&CK Evaluations team implements authentic adversary TTPs while balancing real-world project constraints.

13-Nov-2021 (DAY 4), TRACK 1

13-Nov-2021 (DAY 4), TRACK 2

13-Nov-2021 (DAY 4), TRACK 3

13-Nov-2021 (DAY 4), TRACK 4

This talk will be discussing Light Basin activity cluster which is consistently targeting telecom networks. This talk will be based on research done by Crowd Strike Team. The talk will explain how a team of threat actors targeted telecom network and how did lateral movement using GTP protocols.

As the attacker's are upping the ante by conducting sophisticated cyber attacks, defenders need to keep pace to defend their organizations and protect their crown-jewels from such advanced attackers. In this presentation, we will be looking at discussing how organizations can ramp up the defenses by emulating the adversaries by integrating basic "Red, Blue and Purple" team techniques to fortify their security posture.


Kerala Police


c0c0n 2021 Supporters

Cochin Smart Mission Limited
Indian Oil Corporation
Petronet LNG
Federal Bank
CSB Bank
Bharat Petroleum Corporation Limited
Elastic Security Solution
GAIL (India) Ltd.
Netskope, your cloud security platform.
Breaking Barriers - Lean In Circle
Cyber Security Global Alliance(CSGA)
WICCI Public Safety & Security Council, Bengal
Stories of Infosec Journeys