Savoy, 3rd Floor, Flamingo Corporate Convention Center
All times are in Pacific Time(GMT -7)
Day 1 - August 11, 2023
10:00
KEYNOTE | From Camels to Collaboration, A Journey Through Technology AND Humans
Talk All Audiences
Chris Roberts
11:00
Backslash .
Tushar Kulkarni
Magno Logan
Defensive Coding and Hardened Javascript
Workshop Advanced
Zbyszek Tenerowicz
Aaron Kumavis
Probely .
Generative Adversarial Network (GAN) based autonomous penetration testing for Web Applications
Talk Intermediate
Ankur Chowdhary
11:45
The attackers guide to exploiting secrets in the universe
Talk Intermediate
Mackenzie Jackson
12:30
Tanya Janca
13:00
Pedram Hayati
Gal Bitensky
Tib3rius .
Joe Schottman
Probely .
13:15
The Dark Playground of CI/CD: Attack Delivery by GitHub Actions
Talk Intermediate
Yusuke Kubo
Kiyohito Yamamoto
14:00
Living off the Land with Connectwise: How I Built An Attack Platform & Botnet in 23 lines of Python!
Talk All Audiences
Ken Pyle
15:00
Finding bugs and scaling your security program with Semgrep
Workshop Intro
Lewis Ardern
FlowMate and CSTC for Advanced Pentesting
Arsenal All Audiences
Florian Haag
Matthias Göhring
Hunt the Hacker - Detect compromises in your repositories!
POD All Audiences
GitGuardian .
Tal Folkman
Alik Koldobsky
Spyros Gasteratos
Mike Larkin
Day 2 - August 12, 2023
10:00
KEYNOTE | Collaborative Security: Fostering Innovation and Resilient Cyber Practices
Talk All Audiences
Maril Vernon
11:00
Getting More Bang for your Buck:Appsec on a Limited Budget
Talk All Audiences
Viraj Gandhi
Vandana Verma Sehgal
Hunt the Hacker - Detect compromises in your repositories!
POD All Audiences
GitGuardian .
Probely .
Louis Nyffenegger
Alon Lerner
Backslash .
11:45
Discovering Shadow Vulnerabilities in Popular Open-Source Projects: A Reverse-Fuzzing Journey
Talk Intermediate
Gal Elbaz
Guy Kaplan
12:30
Not All Alerts Are Born Equal: Insights from AppSec Experts on Prioritizing Security Alerts
Panel Intermediate
Shahar Man
Trupti Shiralkar
Joe Christian
Kiran Shirali
13:00
Ankush Jain
Ankita Gupta
Deepfactor .
Secure from Scratch: Secure Code Workshop for DEF CON Kids
Workshop Intro
Yariv Tal
Or Sahar
Probely .
Pentera .
13:30
Dress Code - Analysis of the current status of the Content Security Policy
Talk Intermediate
Felipe Molina
14:15
Jon F
15:00
Jason Haddix
Checkmarx .
Deepfactor .
Per-mission Impossible: Exploring the Android Permission Model and Intents
Workshop Intro
Miłosz Gaczkowski
William Taylor
Pedram Hayati
Hunt the Hacker - Detect compromises in your repositories!
POD All Audiences
GitGuardian .
15:45
Securing the Front Lines: Protecting Front-End Applications from Overlooked Vulnerabilities
Talk All Audiences
Dohyeon Kim
WooWon Kang
16:30
Breaking Barriers: A Deep Dive into Bypassing Next-Gen 2FA and MFA Security Measures
Talk All Audiences
Muhammad Shahmeer
Day 3 - August 13, 2023
09:30
WAF: Making a Problematic Security Tool Suck Less
Talk Intermediate
Emile Spir
Emmanuelle Lejeail
10:00
Checkmarx .
Enhancing Security for ReactJS Applications: Exploring Advanced Defense Techniques
Talk Intermediate
Jim Manico
Threat modelling fun session with OWASP Cornucopia
POD All Audiences
Spyros Gasteratos
Yariv Tal
Hunt the Hacker - Detect compromises in your repositories!
POD All Audiences
GitGuardian .
10:15
Hacking GitHub Actions: Abusing GitHub and Azure for fun and profit
Talk Intro
Magno Logan
11:00
Threat modeling-based application security pipeline
Talk Intermediate
Nielet D'mello
Larkins Carvalho
11:45
Gabrielle Botbol
12:00
Threat modelling fun session with OWASP Cornucopia
POD All Audiences
Spyros Gasteratos
Or Sahar
Yariv Tal
Checkmarx .
Deepfactor .
Jim Manico
12:30
Unveiling the Dual Nature of ChatGPT and Copilot in Secure Development
Talk All Audiences
Kalyani Pawar
13:15
Scoping for Success (Building a Great Bug Bounty program)
Talk All Audiences
Jeffrey Guerra
Logan MacLaren
Thanks to our Sponsors
Gold Sponsors
Silver Sponsors
Bronze Sponsors
