M Nagarajan, IAS

Shri. M Nagarajan is an IAS Officer of 2009 Batch, Gujarat Cadre. Currently he is working as the Collector and District Magistrate of Mehsana, Gujarat.

He has a working experience of 22 years in various government departments including Indian Railways, Indian Audit and Accounts Department and Reserve Bank of India (RBI) and in the Indian Administrative Service(IAS).

He worked as District Collector in Arvalli District Gujarat. He contributed in bringing services delivery and industrial development of this tribal area. Later he was the District Collector of Kutch District, which is India’s largest district in terms of area, and is a very strategic location for India’s defence.

Prior to that, he was leading the Surat Smartcity Mission as CEO of the Surat Smart City Development SPV. Under his leadership Surat was awarded by Government of India for showing highest momentum in Smartcity implementation. He is a member of Expert Group on IT and Cyber Security by Ministry of Rural Development, Govt. Of India.

He has made major interventions in health, education and rural development. He believes that technology can be a game changer in India’s development. He has conceived and implemented projects in Digital Village, Smart Village, Rural Startups, Rural Broadband, Smart Cities, Smart Urban Transportation, eHealth and mHealth for Rural and Urban communities.

He has a Masters in Public Policy and Masters in Economics. A bureaucrat by profession he believes that technology is a great enabler of social change. He has been awarded by Election Commission of India (ECI) for Innovative use of Technology in Elections in the Gujarat 2012 elections.

His projects have won major awards that include SKOCH Award of Excellence, CSI-Nihilent Award, Manthan Award, Financial Inclusion Payment Systems award . He has been chosen as District Collector Digital Champion – 2014.He is an avid blogger and a Startup mentor.

Sessions

Sunil Varkey

Sunil Varkey has over 29 years of cybersecurity leadership experience with large global corporations in banking, telecoms, ITES, software, and manufacturing domains in the Middle East, US and India.

Sunil was earlier Global CISO and Fellow at Wipro, CISO of Idea Cellular, MD at HSBC, and he is also CTO for Symantec and Forescout. Currently is engaged as a Cyber consultant and advisor in the Middle East.

Academically, he holds a Bachelor’s degree in Electronics Engineering with an MBA, along with over 10 security certifications. He also holds security patents in US & EU.

He has published and presented various articles and sessions globally related to information security.

Sessions

Burgess Cooper

Burgess Cooper is a Deputy Cybersecurity Leader and Partner & Heads Cyber Security Market with a team of 1300+ professionals.
He has 28+ years of experience in securing some of the biggest brands in the world from potential cyber-attacks. He is also leading the Responsible AI campaign for EY India.
Prior to EY he was a CISO with Vodafone and HSBC and responsible for Information Security, Privacy & Compliance across the Telecom and BFSI sector.
He is a regular speaker and a jury member at prominent industry events - BCCI, ASSOCHAM, CII, CISO, E-crime and a qualified EC-Council’s CEI Master Trainer for Industry CISO certification course.

Sessions

MAILLARD Pierre-François

Pierre-François Maillard is an engineer in the field of cyber security and operating system. He worked within the CVO laboratory (Operational Cryptology and Virology) in France with a specialization in the UEFI System. He has also worked in various companies in the field of reverse engineering and industrial cybersecurity. In addition, he has contributed to the field through several articles published in MISC, top french cybersecurity magazine, and academic journals based on his research. He has also presented workshops and conferences at C0c0n on his specialties. He is right now finishing his PhD at TCG CREST IAI in the field of adversarial machine learning.

David Baptiste

Dr. BapƟste David is an IT security specialist at ERNW, specialized in Windows operaƟng system. His research is mainly focused on malware analysis, reverse engineering, security of the Windows operaƟng system plaƞorm, kernel development and vulnerabiliƟes research. He also worked for couple of anƟvirus compagnies. He has given special courses and trainings in different universiƟes in Europe. Also, he gives regularly talks on different conferences including Black Hat USA, Defcon, Troopers, Zero Night, Cocon, EICAR, ECCWS…

Sessions

Andreas Arbogast

With over 2 decades of law enforcement and IT-Forensics experience, Andreas is a seasoned professional specializing in cybercrime prevention and incident response. He began his career with the Police Headquarter in Düsseldorf, serving from Sergeant to Sergeant Major between 2001 and 2010. After earning a Bachelor of Arts in Political Science, Psychology, and Government (IT) Administration from the University of Police Sciences in Hagen, he transitioned into cybercrime prevention and response, focusing on protecting critical infrastructure and industries from advanced cyber threats.

In 2021, Andreas further specialized by earning a government certification as an IT-Forensic Senior Analyst from the University of Applied Sciences in Mittweida. He has since led IT-forensic field teams, delivering cybercrime prevention strategies with a proven track record of protecting assets valued at approximately 300 million euros annually.

As a senior consultant for A Control Ltd. since 2021 and mh Service GmbH since 2022, Andreas provides expertise in defeating advanced persistent threats (APT) and addressing complex cybercrime scenarios worldwide. His work in the field is bolstered by his security clearance at the "secret" level and his role at the State Bureau of Criminal Investigations in North-Rhine Westphalia.

Vishal Salvi

Vishal Salvi is the Chief Executive Officer at Quick Heal Technologies Limited. Vishal has donned Cybersecurity and IT leadership roles at premier organizations such as Infosys, HDFC Bank and Standard Chartered Bank for nearly three decades.

Sridhar Govardhan

Ajit Hatti

Ajit Hatti is a serial inventor and innovator and founder of PureID. He has been developing enterprise class security products over a decade and a half. Ajit regularly presents his research & tools at conferences like Black Hat, COCON & DEF CON. He is also the co-founder of Null - Open Security Community & is the founder of Blockchain Village which he organizes at DEF CON.

Sameer Ratolikar

Jacxine Fernandez

Maya R Nair

An experienced leader of Datacenter Infrastructure and Information security with major operating tenets of implementing defense in depth, acquiring 360 degree view of security, implementing IT infrastructure setups from the scratch, revamping datacenters and designing & implementing Business Continuity plans and Disaster Recovery sites.
Maya has a demonstrated history of working in the diverse industries of Telecommunication, BFSI and Manufacturing. She succeeded in positioning the Technology function as a Business Transformation initiative, with major contributions in IT infrastructure, Security technology implementations focussing on protection, prevention, monitoring and alerting.
Key achievements in the current and earlier stints include setting up of complete IT and datacenter infrastructure from the scratch, setting up of Security technology and framework from the scratch and operationalising it and designing & implementing Business continuity plans and Disaster recovery sites.
She is associated with Cyberdome ranked as Commander, a Public Private Partnership initiative started by Kerala Police to combat Cyber Threats and to spread awareness among masses
Maya has won many industry accolades and awards in recognition to her contribution to technology and security. She is a regular speaker in industry forums and writes technology articles.
She holds an engineering degree in Electronics engineering and post graduate degree in Software systems with specialisation in Network security. She also holds a management degree in Finance management. She also has many certifications including CISA, ISO 27001 LA, DCPLA to her credit.

Venkatesh Subramaniam

Dr. A Shiju Rawther

Shiju is a technology leader with strong business acumen with more than two decades of vast experience in major operating tenets of driving digital transformation through thought leadership, innovation, analytics & delivering value to stakeholders.

Shiju is currently working as Head – Information Technology for SBI Mutual Fund spearheading Group IT, Including Technology Strategies, Software Development & Cloud Engineering, IT Infrastructure, Enterprise-wide IT Transformation, Technology Security Operations and Analytics Functions.

Shiju comes with successful and steady career growth in reputed organizations viz., CARE Ratings Limited, Poonawalla Finance, IIFL Finance Limited, TransUnion CIBIL Limited, Fullerton India Credit Company Limited, PCS Technology Limited, Gateway Terminals India, Wipro InfoTech and Primus Telecommunications India Limited.
He is a prominent speaker at many industry conferences. Shiju has been recognized as one of the Most Innovative CIOs of India, Top 100 CISOs consistently over the last years by various media groups & forums. He is also associated with Cyberdome, Public Private Partnership initiative started by Kerala Police to combat Cyber Threats. Shiju was recognized as “Security Leader of the Year - Financial Services” in December 2016 by DSCI, NASSCOM.
Shiju holds a Bachelor of Engineering Degree in Computer Science & Engineering from Bangalore University and a Master in Information Management from Mumbai University. He also holds a PhD in Computer Science & Engineering from Hindustan Institute of Technology & Science, Chennai with research focused on securing networked systems against cyber-attacks using compartment models. An accomplished academic and professional, Dr. Shiju has published many research papers in international journals and also holds three patents registered with Indian Patent Authority. He recently received the prestigious Dr. K.C.G. Verghese Award for Best Researcher 2024.

Aseem Jakhar

Suresh Sharma

Jairam Ramesh

Dhruv Bisani

Dhruv is an experienced cybersecurity expert with 10+ years of experience and a key interest in leading and delivering Adversarial Attack (Red/Purple Team) simulations, along with dealing with audiences at all levels, from IT engineers to executives.

Currently, he is the Head of Adversarial Attack Simulation at Starling Bank, a leading UK Bank, where he developed Red Team capabilities to target novel tech stacks such as macOS and Zero-trust architecture. His role involves delivering both technical attack simulations and working closely with executives.

Prior to that, he founded & led the Red Team at Resillion (previously known as Eurofins Cyber Security) - a global consultancy working with a wide range of clients, and achieved revenue of >1M$ per year.

Over the last few years, Dhruv’s core focus has been on developing the red team capability, while focusing on testing less common environments such as Zero-trust & macOS. He has successfully delivered advanced attack simulations across a range of sectors including finance, healthcare, legal, and retail. He possesses extensive experience in executing projects under the UK CBEST/TBEST schemes. His current role encompasses a wide array of responsibilities such as recruitment, training, overseeing sales/finances, as well as enhancing technical methodologies and processes.

Dhruv has delivered talks at 10+ conferences internationally, such as GISEC Dubai 2024, BSides London 2023 & e-crime Denmark 2023, as well been part of panels such as “Ask the Hacker,” “Getting started in Industry” at several conferences.

Earned several industry leading certificates such as CREST Certified Simulated Attack Specialist, CREST Certified Tester INF & WEB, Certified Red Team Expert , Certified Azure Red Team Professional, Offensive Security Certified Professional, Microsoft AZ 900 & 500.

Sessions

V Kumar

V Kumar is a independent researcher & reverse engineer. He has spoken at several international security conferences such as BlackHat/Hack-in-the-Box/NullCon etc. He has more than 2 decades of experience in Reverse Engineering Software and Hardware world, Defeating cryptographic solutions, Developing 0-day exploits, Analyzing RF and SatComs for secure communications and protocols, Aiming for few nano seconds in extremely high performance computing environment. He has been active in the scene since DOS era.

Anand Kumar Ganesan

Anand Ganesan is the Lead Product Security Engineer at Poshmark, an e-commerce platform. He has a total of 9 years of experience in the security industry. He has been deeply engaged in driving all the product security efforts. This includes conducting threat modeling for various projects, executing penetration tests across diverse platforms, conducting source code analysis, prioritizing vulnerabilities based on severity, establishing content security policies from the ground up, assisting the compliance team during audits, and supporting them in assessing vendors from a product security perspective.
He is deeply passionate about continuously enhancing his skills and finds great satisfaction in overcoming and bypassing security implementations. Additionally, he also finds fulfillment in mentoring junior team members and guiding them to become proficient.
When he's not engaged in application security activities, he enjoys playing and watching cricket, socializing with friends, and catching up on movies.

Sessions

Mohammad Arif

Mohd Arif holds the position of Senior Product Security Engineer at Poshmark, a prominent Ecommerce organization. With three years of experience in the security industry, he has established himself as a skilled practitioner in various domains. His expertise encompasses hacking web applications, mobile apps, API security testing, source code review, architecture review, and threat modeling.
His true passion lies in Cloud security, Hardware security, and IoT security. He derives immense satisfaction from discovering novel methods to bypass security mechanisms and enhancing his operational security (OPSEC) techniques.
He remains deeply committed to the field of cybersecurity and actively seeks opportunities to share his knowledge and experiences. As a result, he has been invited to speak at esteemed conferences and summits, including Seasides Conference, C0C0N Conference, and Redteam Summit. Notably, Mohd Arif has been an enthusiastic volunteer at India's beloved Seasides Conference, where he eagerly shares his hacking insights with a receptive audience.
When he's not immersed in breaking code and applications, you can find him taking delight in photography, playing video games, embarking on biking adventures on weekends, and having a knack for creating amusing memes.

Sessions

Madhukar Raina

Madhukar Raina is a Security Researcher with around 9 years of experience in information security and trainings. He works for Hack The Box, where he contributes to the malware analysis, reverse engineering, and detection engineering related content and labs. He has previously worked for Zscaler & Securonix as a Security Researcher and Threat Hunter, mainly focusing on malware analysis, reverse engineering, deception, threat hunting operations, and adversarial research. In his past roles, he has also worked on digital forensics, incident response and compromise assessment projects.

Rajesh Thapar

Cyber Security professional with more than 28 years of Information Security and Information Technology experience primarily in driving complex security program in BFSI.

Sessions

Sayan Mitra

Sayan is a Security Researcher currently working at Zscaler, part of the Threat Hunting Team. He has around 4+ years of experience in conducting Red Team assessments for Indian banks and providing managed threat hunting services to clients. He has also contributed to research and projects for Zscaler's deception platform, IllusionBlack.

Sessions

Niranjan Jayanand

Niranjan has over 16 years experience working on tracking and reporting on eCrime Toolkits, APT campaigns and Ransomware attacks. His research publications were highlighted in multiple journals, conferences, reports, webinars and podcasts. He has reported on over 60 active early attack campaigns ahead of competitors and helped protect global customers.

Sessions

Rakesh Seal

Venugopal Parameswara

Biju K

Shivkumar Pandey

Kishan Kendre

Abhijith B R

Abhijith B R, also known by the pseudonym Abx, has more than a decade of experience in the offensive cyber security industry. He is a professional hacker, offensive cyber security specialist, red team consultant, security researcher, trainer and public speaker.

Currently, he is involved with multiple organizations as a consulting specialist, to help them build offensive security operations programs, improve their current security posture, assess cyber defense systems, bridge the gap between business leadership and security professionals.

Abhijith was responsible for building and managing offensive security operations and adversary simulation for a prominent FinTech company called Envestnet, Inc. In the past, he held the position of Deputy Manager - Cyber Security at Nissan Motor Corporation, and prior to that, he worked as a Senior Security Analyst at EY.

As the founder of Adversary Village (https://adversaryvillage.org/), Abhijith spearheads a community initiative focused on adversary simulation, adversary-tactics, purple teaming, threat actor/ransomware research-emulation, and offensive cyber security. Adversary Village is part of DEF CON Villages and organizes hacking villages at prominent events such as the DEF CON Hacking Conference, RSA Conference etc.

Abx also acts as the Lead of an official DEF CON Group named DC0471. He is actively involved in leading the Tactical Adversary project (https://tacticaladversary.io/) a personal initiative that centers around offensive cyber security, adversary attack simulation and red teaming tradecraft.

Abhijith has spoken at various hacking and cyber security conferences such as, DEF CON hacker convention – Las Vegas, RSA Conference – San Francisco, The Diana Initiative – Las Vegas, DEF CON 28 safemode - DCG Village, Opensource India, Security BSides Las Vegas, BSides San Francisco, Hack Space Con – Kennedy space center Florida, Nullcon – Goa, c0c0n – Kerala, BSides Delhi etc.

Diptisha Samanta

Arpith Rajagopal

Arpith has presented at Accel Cybersecurity Summit 2024. His interests lie in Application Security, Automation, Red Teaming and CICD Security.

Suchith Narayan

Suchith has presented at Rootconf, Null, Bsides Delhi, Accel Cybersecurity Summit amongst others. His interests are in CI/CD Security, Red teaming, Application security and Threat Modeling

Ashwath Kumar

Ashwath Kumar is currently working as Head of Security at Razorpay. Ashwath is a seasoned Principal engineer with extensive expertise in architecture reviews, cloud security, and red teaming. With a Master of Science in Computer Engineering from Texas A&M University, he has a proven track record of building and leading large teams to address complex security challenges. He has also presented at prestigious conferences such as Blackhat, Owasp, Nullcon & has written research papers with over 800 citations.

Hariprasad Pujari

Hariprasad, a graduate of IIT Kharagpur, is a Security Engineer 2 at Razorpay, specializing in building security tooling and developing in-house solutions that safeguard critical data and infrastructure. His key contributions include integrating security tools into CI/CD pipelines with GitHub Actions, advocating for "shifting left" on security to address vulnerabilities early in the development process, and automating vulnerability management. Hari's innovative approach and commitment to cybersecurity have significantly enhanced Razorpay's security posture.

Vinay Kumar

Vinay is a seasoned Security Researcher with extensive experience in computer and network security. Currently working at Quick Heal, Vinay has a rich professional background, having previously held key roles at McAfee, Trellix, and Trend Micro. His expertise lies in building innovative proofs of concept (PoCs) aimed at detecting and safeguarding systems against vulnerabilities, malware, and conducting in-depth vulnerability research and malware analysis. Vinay has contributed to the security of popular platforms like ImageMagick and WordPress by identifying a few critical vulnerabilities, enhancing their overall safety.

Adrip Mukherjee

Adrip is currently working as Security Research Lead at Seqrite responsible for NonPE engine signature releases targeting endpoint detection for AV, EPS and also for IPS engine for network based detections . He has also worked with Intel Security, McAfee, Trellix in the past where the role involved Cloud based detection based on DNS and Behavioural signature for HIPS and NIPS engine for enterprise segment.

Raja Nagori

Specializes in conducting penetration testing for web applications, network applications, and mobile applications (Android and iOS). Proficient in SAST (Checkmarx, Veracode, Sonarqube), DAST (Burpsuite), and Threat Modeling alongside Dev-Sec-Ops

Expertise includes Docker containerization and creating Docker images for Pentesters with Docker Security

Leading the development of an open-source tool called Nightingale: Docker for Pentester listed under the OWASP Open Source project list

Active member of the Hack the Box community, solving new security patches and challenges

Shares insights and knowledge through publications on Medium about security findings, methodologies for identifying vulnerabilities, and mobile application VAPT methodologies

Dedicated to sharing discoveries with the community and providing assistance to those in need

Dr. Abhilasha Vyas

Dr. Abhilasha Vyas is Cloud Security Expert at CloudThat, Core team member of Cloud Security Alliance Bangalore, Core team member of OT security professionals community, member of WiCyS India, and an executive council member of Women in Big Data (WiBD) India. A recognized cybersecurity leader, Dr. Vyas has delivered sessions globally, focusing on DDoS attack detection and awareness. She is a Microsoft Certified Trainer, awarded as a Cyber Security Women Influencer at BSides Bangalore 2024, Cyber Acharya 2024 by AuthinticOne, and was listed among India’s Top Women Influencers in Security 2022.

Abhijeet Singh

I'm a cybersecurity professional with extensive experience in penetration testing, vulnerability assessment, and threat modeling. As a security analyst at Nagarro, I leverage my technical skills to protect critical assets and ensure secure digital environments. Additionally, I'm the founder of Kubotor, a cybersecurity startup dedicated to providing specialized services, including penetration testing for web and mobile applications, API security, offensive tradecraft, Red Teaming and corporate trainings and workshops. My work is deeply rooted in hands-on methodologies, and I'm passionate about developing new approaches, like the Kubotor ATR-KC Model, an adaptive kill chain framework for offensive security tactics.

Nitish Agrawal

At CyberFrat, my role as a Senior Security Analyst harnesses my Master's in Cyber/Computer Forensics and Counterterrorism, enabling me to lead initiatives that fortify digital infrastructures. Collaborating with a dedicated IT team, we prioritize robust security protocols and innovate preemptive measures against cyber threats.

Tarun Wig

Midhun Babu

Sheshadri MV

Ajay SK

Sourav Sachin

Sourav Sachin, an IIT Bombay alumnus, has been a serial technopreneur, innovator, and investor. He is ex-VP of engineering of BrowserStack, built Flipkart's marketplace, and is now providing technology consulting to large transformational projects globally.

He enjoys mentoring with passion and has been helping from young startups to mature multi-billion dollar ventures and many in between. He has invented, curated, practiced, and mastered various frameworks which help him scale people, processes, and technology in synchrony. His agile and vigilant approach surfaces several quick wins from blindsight.

With intense product thinking to solve the inefficiencies of insurance processes, he co-founded a start-up that is committed to making health insurance claims as easy as an eCommerce transaction.

Nihar Sawant

Jaydev Joshi

Pradyumna Ch

Pradyumna is a Hardware Security Researcher in a product-based company in India with 8 years of experience. His research focuses on Side Channel Analysis and Fault Injection, as well as developing hardware exploits and implants. These techniques are crucial for maintaining persistence, creating physical backdoors, or executing Man-in-the-Middle (MiTM) attacks, all of which are valuable for security assessments and Red Team activities. He also specializes in identifying vulnerabilities across IoT, embedded systems, and hardware devices. Additionally, he explores RF and telecommunications, enjoys participating in Capture The Flag (CTF) competitions, and writes blogs under his hacker’s handle.

Anshul Bajpai

Anshul is a dedicated Hardware Security Researcher with over 4 years of experience, currently focused on expanding his expertise in Side Channel Attacks and Fault Injection. Skilled in network and wireless security, Anshul has a strong interest in embedded system security and has previously worked on enhancing hardware security for Android devices. His current research centers on 5G and telecommunications security, where he explores emerging vulnerabilities in next-generation networks. Anshul’s commitment to uncovering hardware and embedded system vulnerabilities drives his impactful contributions to the field of hardware security.

Balakrishnan A

Akhilesh Variar

Philip Varughese Vayarakunnil

Nikhil Shrivastava

Nidhish Bhatnagar

Ashwin Kumar Singh

Ashwin Kumar Singh is a skilled security professional with three years of experience in DevSecOps, embedded security, and reverse engineering. He has been involved in security automation, vulnerability assessments, and penetration testing. A passionate coder and automation enthusiast, Ashwin helps develop and organize CTFs. His expertise in reverse engineering extends to binary deconstruction, static and dynamic analysis, and uncovering hidden software flaws. He analyzes binaries and enhances security measures. His current research focuses on binary fuzzing techniques to identify security vulnerabilities and optimize testing methodologies for proprietary software and libraries.

Ish Bhatt

Ish Bhatt is a seasoned cybersecurity engineer with a master’s degree in Cybersecurity and Digital Forensics. By day, Ish is a full-time penetration tester, applying advanced technical skills to uncover and mitigate vulnerabilities across complex infrastructures. Outside work, he’s an enthusiastic Capture the Flag (CTF) competitor, honing his hacking skills in high-stakes challenges.
With a deep interest in hardware security and an impressive toolkit for exploiting network configurations, Active Directory infrastructures, and IoT devices, Ish combines his knowledge of digital forensics with a hands-on approach to threat detection. His unique insights into hardware security make him a sought-after voice in the cybersecurity community, where he frequently shares his experiences and techniques for ethical hacking.

Ritik Kumar Jain

Anekant Singhai

Amal Joy

Sapan Talwar

Dharani Sanjaiy

Padnya Manwar

Babitha BP

Prashant Choudhary

David Baptiste

Dr. BapƟste David is an IT security specialist at ERNW, specialized in Windows operaƟng system. His research is mainly focused on malware analysis, reverse engineering, security of the Windows operaƟng system plaƞorm, kernel development and vulnerabiliƟes research. He also worked for couple of anƟvirus compagnies. He has given special courses and trainings in different universiƟes in Europe. Also, he gives regularly talks on different conferences including Black Hat USA, Defcon, Troopers, Zero Night, Cocon, EICAR, ECCWS…

Sessions

Andreas Arbogast

With over 2 decades of law enforcement and IT-Forensics experience, Andreas is a seasoned professional specializing in cybercrime prevention and incident response. He began his career with the Police Headquarter in Düsseldorf, serving from Sergeant to Sergeant Major between 2001 and 2010. After earning a Bachelor of Arts in Political Science, Psychology, and Government (IT) Administration from the University of Police Sciences in Hagen, he transitioned into cybercrime prevention and response, focusing on protecting critical infrastructure and industries from advanced cyber threats.

In 2021, Andreas further specialized by earning a government certification as an IT-Forensic Senior Analyst from the University of Applied Sciences in Mittweida. He has since led IT-forensic field teams, delivering cybercrime prevention strategies with a proven track record of protecting assets valued at approximately 300 million euros annually.

As a senior consultant for A Control Ltd. since 2021 and mh Service GmbH since 2022, Andreas provides expertise in defeating advanced persistent threats (APT) and addressing complex cybercrime scenarios worldwide. His work in the field is bolstered by his security clearance at the "secret" level and his role at the State Bureau of Criminal Investigations in North-Rhine Westphalia.

Yash Bharadwaj

Yash Bharadwaj, Co-Founder & Technical architect at CyberWarFare Labs with over 5.5 Years of Experience as Technologist. Highly attentive towards finding, learning and discovering new TTP's used during offensive engagements. His area of interest includes building Red / Blue team infrastructure, evading AVs & EDRs, Pwning On-Premise & Multi cloud infrastructure. Previously he has delivered hands-on red / blue / purple team trainings / talks / workshops at Blackhat, cocon, Nullcon, X33fCon Poland, NorthSec Canada, BSIDES Chapters (US & Asia Pacific), OWASP Chapters, CISO Platform, YASCON etc.

Sessions

Manish Gupta

Manish Gupta is Director of CyberWarFare Labs having 6.5+ years of expertise in offensive Information Security. Previously he had worked as an operator & team lead at product based companies like Microsoft, Grab & Citrix. He specializes in Red Teaming Activities on enterprise Environment including On-premise & Multi-Cloud. His Research interest includes Real World Cyber Attack Simulation and Advanced persistent Threat (APT). Previously he has presented his research at reputed conferences like Blackhat, DEFCON, cocon, Nullcon, BSIDES Chapters, X33fcon Poland, NorthSec Canada & other corporate training etc

Sessions

Anant Shrivastava

Anant Shrivastava is an information security professional with 15+ yrs of corporate experience in Network, Mobile, Application and Linux Security. Anant is an avid opensource supporter and runs multiple opensource projects prominent of them being TamerPlatform and CodeVigilant.

He contributes to multiple Open communities like null and Garage4Hackers. He has also helped establishing local chapter in his hometown null Bhopal

He has been a speaker and a trainer at a multitude of conferences such as Black Hat -USA/ASIA/EU, Defcon, Nullcon, c0c0n, Rootconf and many more).

He also participates in various communities as a cfp reviewer. Notable of them being Blackhat EU, nullcon, Rootconf by Hasgeek, recon village @ Defcon , cloud village @ defcon, Adversary Village @ defcon

His code contributions can be found on Github. He is active on Twitter and Fediverse and his talks and presentations can be found here. He writes about his experiments at his blog.

Sessions

John Sherchan

John Sherchan is a Red Team Security researcher at CyberWarFare Labs, bringing over 5+ years of experience in Reverse Engineering, Malware Analysis/Development, and Source Code Reviewing, with a specialization in Windows Internals (User and Kernel Modes). Demonstrating an advanced understanding, he has successfully reversed multiple Antivirus (AV) and Endpoint Detection and Response (EDR) systems to comprehend its architecture. Committed to advancing cybersecurity, his additional interests include PWNing Active Directory, conducting Adversary emulation/simulation, writing rootkits, crafting exploits, and strategically overcoming challenges

Sessions

Harisuthan S

Harisuthan is a seasoned Blue Team Security Researcher at CyberWarFare Labs, with over 3 years of dedicated experience in cyber defense. He has a deep understanding of Blue Team methodologies, including adversarial threat detection and investigation, proactive threat hunting, and conducting adversary emulation and simulation for various investigative purposes

Sessions

Hemant Sonkar

Hemant Sonkar presently serves as the Lead Security Consultant at Payatu, demonstrating proficiency in delivering training sessions at prominent events such as NULLCON, NULL, and various internal training programs. With an impressive three-year tenure in the field, he brings extensive expertise to the domain. His professional portfolio includes the examination of a wide range of IoT devices, spanning medical devices, home automation tools, and electric vehicles. Throughout his hardware security research endeavors, he has cultivated invaluable skills in discerning attack surfaces and vulnerabilities within real-world IoT devices.

Sessions

Pugal Selvan

Pugal Selvan began his journey in binary exploitation and reverse engineering through CTFs and is now a Security Researcher at Payatu, where he specializes in firmware analysis and reversing of many IoT and embedded devices. Recently, his curiosity has led him to explore hardware attacks, an area he is passionate about. By day, Pugal serves as a dedicated Security Consultant, and by night, he delves into the world of hardware hacking, continually expanding his knowledge and skills in the field.

Sessions

Giuseppe Trotta

Giuseppe Trotta (aka ohpe), is a seasoned security researcher and trainer with deep expertise in phishing, social engineering, and post-exploitation automation. As a core member of the MuraenaTeam, Giuseppe has been at the forefront of developing innovative tools that have significantly advanced the field of phishing exploitation. His groundbreaking work on Muraena and NecroBrowser has revolutionized how security professionals approach session hijacking and post-exploitation tasks.

With a strong commitment to education, Giuseppe has delivered numerous training sessions at private events and organizations, where he is known for his in-depth, hands-on approach. His training methodologies are unique, focusing on practical, real-world scenarios that prepare participants to face modern phishing threats head-on. Giuseppe's sessions are designed to be interactive, providing attendees with the knowledge and skills needed to enhance their red teaming capabilities and fortify their defenses against increasingly sophisticated phishing attacks.

Sessions

Kartik Lalan

Product Security Engineer @ Security Centre of Excellence – Philips Innovation Campus. He is M.Tech. in CS with Specialization in Information & Network Security. He conducts frequent talks and workshops on Info Sec topics @ several places including C0C0N, DEFCON BHV, Bsides Delhi & Bangalore Chapter, OWASP, Null A'bad & Bangalore Chapter, DroidCon-IN. Kartik loves to write technical Blogs in his leisure time.

Sessions

Aravind C Ajayan

Sr. Security Engineer with Philips and is part of the Security Centre of Excellence team. Aravind's primary areas of expertise are web/thick client application penetration testing, hardened system security, network security, and windows active directory security. He has helped to fix severe issues in IMS(Internet Management Software) solutions through responsible disclosures. Aravind pursued his master's in Cyber Security Systems and Networks from Amrita Vishwa Vidyapeetham, Coimbatore. He is an Offensive Security Certified Professional (OSCP) and has published several research papers on security in IEEE and Springer.

Sessions

Nikhil Joshi

Nikhil Joshi is an AI Security Researcher. He is currently working on implementations of ML in offensive and defensive security products. He has orchestrated methodologies to pen-test Machine Learning applications against ML-specific vulnerabilities and loves to explore new ways to hack ML-powered applications. Parallelly Nikhils research is focused on security implications in Deep Learning applications such as Adversarial Learning, Model stealing attacks, Data poisoning, etc. Nikhil is an active member of local Data Science and Security groups and has delivered multiple talks and workshops. He has spoken at HITB Amsterdam, PhDays Russia, and IEEE conferences. And trainer at the nullcon and Troopers. Being an Applied Mathematics enthusiast, recent advances in Machine Learning and its applications in security, behavioral science, and telecom are of major interest to Nikhil.

Sessions

Hare Krishna Rai

Hare Krishna Rai is a cybersecurity enthusiast with expertise in secure coding review and penetration testing with about 2 years experience in product security, currently working as Associate Product Security Engineer at a fintech company.

Sessions

Gaurav Joshi

Gaurav Joshi is working extensively with Static Application Security Testing (SAST) as a security professional. His role involved conducting secure code reviews and utilizing SAST techniques to identify and mitigate vulnerabilities in software applications.

Sessions