Savoy, 3rd Floor, Flamingo Corporate Convention Center
All times are in Pacific Time(GMT -7)
Day 1 - August 11, 2023
10:00
KEYNOTE | From Camels to Collaboration, A Journey Through Technology AND Humans
Talk All AudiencesChris Roberts
11:00
Defensive Coding and Hardened Javascript
Workshop AdvancedZbyszek Tenerowicz
Aaron Kumavis
Generative Adversarial Network (GAN) based autonomous penetration testing for Web Applications
Talk IntermediateAnkur Chowdhary
11:45
The attackers guide to exploiting secrets in the universe
Talk IntermediateMackenzie Jackson
12:30
13:00
13:15
The Dark Playground of CI/CD: Attack Delivery by GitHub Actions
Talk IntermediateYusuke Kubo
Kiyohito Yamamoto
14:00
Living off the Land with Connectwise: How I Built An Attack Platform & Botnet in 23 lines of Python!
Talk All AudiencesKen Pyle
15:00
Finding bugs and scaling your security program with Semgrep
Workshop IntroLewis Ardern
FlowMate and CSTC for Advanced Pentesting
Arsenal All AudiencesFlorian Haag
Matthias Göhring
Hunt the Hacker - Detect compromises in your repositories!
POD All AudiencesGitGuardian .
Day 2 - August 12, 2023
10:00
KEYNOTE | Collaborative Security: Fostering Innovation and Resilient Cyber Practices
Talk All AudiencesMaril Vernon
11:00
Getting More Bang for your Buck:Appsec on a Limited Budget
Talk All AudiencesViraj Gandhi
Vandana Verma Sehgal
Hunt the Hacker - Detect compromises in your repositories!
POD All AudiencesGitGuardian .
11:45
Discovering Shadow Vulnerabilities in Popular Open-Source Projects: A Reverse-Fuzzing Journey
Talk IntermediateGal Elbaz
Guy Kaplan
12:30
Not All Alerts Are Born Equal: Insights from AppSec Experts on Prioritizing Security Alerts
Panel IntermediateShahar Man
Trupti Shiralkar
Joe Christian
Kiran Shirali
13:00
Secure from Scratch: Secure Code Workshop for DEF CON Kids
Workshop IntroYariv Tal
Or Sahar
13:30
Dress Code - Analysis of the current status of the Content Security Policy
Talk IntermediateFelipe Molina
14:15
15:00
Per-mission Impossible: Exploring the Android Permission Model and Intents
Workshop IntroMiłosz Gaczkowski
William Taylor
Hunt the Hacker - Detect compromises in your repositories!
POD All AudiencesGitGuardian .
15:45
Securing the Front Lines: Protecting Front-End Applications from Overlooked Vulnerabilities
Talk All AudiencesDohyeon Kim
WooWon Kang
16:30
Breaking Barriers: A Deep Dive into Bypassing Next-Gen 2FA and MFA Security Measures
Talk All AudiencesMuhammad Shahmeer
Day 3 - August 13, 2023
09:30
WAF: Making a Problematic Security Tool Suck Less
Talk IntermediateEmile Spir
Emmanuelle Lejeail
10:00
Enhancing Security for ReactJS Applications: Exploring Advanced Defense Techniques
Talk IntermediateJim Manico
Threat modelling fun session with OWASP Cornucopia
POD All AudiencesSpyros Gasteratos
Hunt the Hacker - Detect compromises in your repositories!
POD All AudiencesGitGuardian .
10:15
Hacking GitHub Actions: Abusing GitHub and Azure for fun and profit
Talk IntroMagno Logan
11:00
Threat modeling-based application security pipeline
Talk IntermediateNielet D'mello
Larkins Carvalho
11:45
12:00
Threat modelling fun session with OWASP Cornucopia
POD All AudiencesSpyros Gasteratos
12:30
Unveiling the Dual Nature of ChatGPT and Copilot in Secure Development
Talk All AudiencesKalyani Pawar
13:15
Scoping for Success (Building a Great Bug Bounty program)
Talk All AudiencesJeffrey Guerra
Logan MacLaren