BSidesLuxembourg

📢 BSides Luxembourg 2026: Next Session Announced!

𝗛𝗢𝗪 𝗧𝗢 𝗥𝗘𝗔𝗗 𝗖𝗢𝗗𝗘 𝗧𝗢 𝗙𝗜𝗡𝗗 𝗩𝗨𝗟𝗡𝗘𝗥𝗔𝗕𝗜𝗟𝗜𝗧𝗜𝗘𝗦 (2h Workshop) with Louis Nyffenegger (@snyff@infosec.exchange ), 6 May

The industry needs more security code reviewers. Vulnerabilities are getting deeper, not simpler, and modern applications fail in subtle ways that scanners, and even AI, routinely miss. Meanwhile, developers are writing less code and reviewing more of it than ever (hopefully).

This workshop is a fast, hands-on introduction to reading code with a security mindset. Through real CVE-inspired examples, you’ll see how tiny inconsistencies, misplaced assumptions, and misunderstood framework behaviour turn into real, exploitable flaws. You’ll learn how to detect red flags quickly, identify dangerous patterns in small snippets, and build intuition for where vulnerabilities hide. Whether you’re a developer, pentester or security engineer, you’ll walk away with a foundational methodology for performing clear, consistent, and reliable code reviews.

Led by Louis Nyffenegger: PentesterLab founder, appsec expert (ex-National Bank of Australia, Australia Post, Fitbit), DEFCON/Kawaiicon/BSides speaker, AppSecSchool YouTuber https://pretalx.com/orga/event/bsidesluxembourg-2026/speakers/CZM8Q8/
​
📅 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
🗓️ Schedule link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg2026 #CodeReview #Vulnerabilities #Security

🎮 The Return of Malware & Monsters: Collaborative IR Gaming (2h Workshop) on May 6th!

𝗚𝗢𝗧𝗧𝗔 𝗖𝗢𝗡𝗧𝗔𝗜𝗡 '𝗘𝗠 𝗔𝗟𝗟: 𝗖𝗢𝗟𝗟𝗔𝗕𝗢𝗥𝗔𝗧𝗜𝗩𝗘 𝗜𝗡𝗖𝗜𝗗𝗘𝗡𝗧 𝗥𝗘𝗦𝗣𝗢𝗡𝗦𝗘 𝗧𝗥𝗔𝗜𝗡𝗜𝗡𝗚 𝗧𝗛𝗥𝗢𝗨𝗚𝗛 𝗚𝗔𝗠𝗜𝗡𝗚 with Klaus Agnoletti (@klausagnoletti@infosec.exchange) & 𝗚𝗟𝗘𝗡 𝗦𝗢𝗥𝗘𝗡𝗦𝗘𝗡 - 6 May, 9AM - 11AM

Back by popular demand after last year's hit! Ditch dull tabletops for Malware & Monsters – tabletop RPG meets creature-collecting where teams hunt/contain digital threats in story-driven scenarios with MITRE ATT&CK-mapped malware "malmons." Experience real IR chaos: coordination under pressure, incomplete intel, stakeholder drama. Take roles like Hunter, Analyst, Forensicator, Communicator to see how teams actually collaborate. Learn mechanics, build custom scenarios from real malware history, run live sims with "type effectiveness" for defenses and evolution for escalating attacks. Walk away with free, ready-to-use materials for fun, effective IR training.

Led by Klaus Agnoletti https://pretalx.com/orga/event/bsidesluxembourg-2026/speakers/SQVVHK/ (infosec pro since 2004, BSides København co-founder, storytelling cyber advisor, neurodiversity advocate) & Glen Sorensen https://pretalx.com/orga/event/bsidesluxembourg-2026/speakers/J3PRCC/ (Recovering CISO, DeleteMe Solutions Engineer, OSINT/AI expert, HackBack Gaming Incident Master).

📅 Conference dates and time: 6–8 May 2026 | 9AM - 6PM
📍 Venue: 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

Game your way to better IR skills – popular return engagement! 🎲

#BSidesLuxembourg2026 #IncidentResponse #CyberSecurityTraining #BlueTeam #GameBasedLearning #MITREATTACK #BSides #DnD #DFIR

📡 Demystify IoT Traffic with Wireshark!

BSides Luxembourg 2026 new confirmed session

𝗣𝗔𝗖𝗞𝗘𝗧 𝗔𝗡𝗔𝗟𝗬𝗦𝗜𝗦 𝗙𝗢𝗥 𝗕𝗘𝗚𝗜𝗡𝗡𝗘𝗥𝗦 – 𝗔𝗡 𝗜𝗢𝗧 𝗧𝗢𝗬, 𝗦𝗢𝗠𝗘 𝗣𝗔𝗖𝗞𝗘𝗧𝗦, 𝗔𝗡𝗗 𝗪𝗜𝗥𝗘𝗦𝗛𝗔𝗥𝗞 (2h Workshop) with 𝗞𝗔𝗧𝗛𝗘𝗥𝗜𝗡𝗘 𝗟𝗘𝗘𝗦𝗘 (@katalyst@chaos.social) - 6 May at 9am and 11am.

Connected devices chat non-stop, even idle. This beginner 2h workshop uses a Wireshark PCAP from a creepy IoT toy to teach reading traffic: device discovery, DNS, connections, encryption handshakes, "phoning home" detection – no crypto breaking needed. Spot patterns, metadata, and relationships visible even in encrypted payloads. Zero experience required – just curiosity!

Led by Katherine Leese: retrained in her 40s as Computer Expert (System Integration), now at SevenShift IoT cybersecurity (Cologne), Haecksen/CCC member, Cologne OWASP leader. https://www.linkedin.com/in/katleese/

📅 6–8 May 2026 | 09:00–17:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/

Beginner-friendly Wireshark magic and sneaky IoT!🔍

#BSidesLuxembourg2026 #BSides #IoT #networkanalysis #Wireshark

🚀 BSides Luxembourg 2026 Session Announcement!

[𝗥𝗘𝗕𝗢𝗢𝗧] 𝗠𝗟 𝗙𝗢𝗨𝗡𝗗𝗔𝗧𝗜𝗢𝗡𝗦 𝗙𝗢𝗥 𝗖𝗬𝗕𝗘𝗥𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗜𝗡 𝟮𝟬𝟮𝟲

@paulinebourmeau@infosec.exchange (cookie) will give a full day 8-hour training on May 6!

No PhD needed:-) This full-day, hands-on training equips cybersecurity pros with practical machine learning skills – from ML basics to deep learning with TensorFlow – focused on security applications. Set up a complete dev environment and implement real ML through labs, no heavy math or prior AI experience required.

Cookie is a independent researcher at the AI-cybersecurity crossroads, DEFCON Paris founder, MISP contributor, and former Threat Intelligence Analyst (OSINT/HUMINT/SOCINT), with a master’s in Criminology, and a background in sociolinguistics and computer science). https://pretalx.com/bsidesluxembourg-2026/speaker/3LW9XQ/

📅 Conference dates are 6–8 May 2026 | 09:00–17:00

📍 14, Porte de France, Esch-sur-Alzette, Luxembourg

🎟️ Tickets: https://2026.bsides.lu/tickets/

🗓️ Schedule link: https://pretalx.com/bsidesluxembourg-2026/schedule/

#BSidesLuxembourg2026 #BSides #Community #Machinelearning #AI #Cybersecurity #Tensorflow

The worst part about organizing a conference is definitely when you have to send out submission-rejection emails.

We hate this part. We apologize and wish we could accept all of you.

We can't. So sorry.

Thanks so much for all of your submissions, we've worked SO SO many of them into the agenda for this year's BSidesLuxembourg, which you can find here on @pretalx@chaos.social https://pretalx.com/bsidesluxembourg-2026/schedule/

Tickets are on on @pretix@pretix.social https://pretix.eu/BSidesLux/2026/

It's all about the people. 💜

We've partnered with InfoSecMap to connect our event with the broader #InfoSec community.

InfoSecMap is your global go-to platform to explore the #CyberSecurity ecosystem.

Check it out! ⬇️
https://infosecmap.com/
#BsidesLuxebourg2026 #Partnership

#BsidesLuxebourg2026 is happy to announce a partnership with BSidesLimburg!

Thank you Stephan van Dyck, you are amazing!

Folks, we're proud to announce that Aikido Security and Brainframe.com GRC have chosen to sponsor #BSidesLuxembourg2026 and they're our Golden sponsors!

You are our heroes, guys!

Blackhoodie signup for #BSidesLuxembourg2026 on May 6th just opened, 20 slots max, so grab your spot while you can:

https://lnkd.in/dN_vV9M4

For questions, contact us if its conference related, or @pinkflawd@mastodon.social and Sonia Seddiki if its #Blackhoodie related questions!

We hope you'll have a blast, and feel free to stay for the full BSidesLux experience, its all included in your ticket. Schedule here, in case you need it:

https://pretalx.com/bsidesluxembourg-2026/schedule/

Also: if you're coming from outside Luxembourg, ping us if you want/need travel support for travel/hotel, we can help thanks to the fantastic folks at Luxembourg House of Cybersecurity~ LHC!!

#BSides

Our call for sponsors is still open.

Our financials for 2026 are still a bit sketchy, we wouldn't mind 2-3 more sponsors to ensure the stability of the planning :).

Feel free to boost or send to your friends working for cybersecurity vendors, and thank you so much to the awesome sponsors who already signed up!!

🫣 🤝 🤗

🌟 Welcome to Another #BSidesLuxembourg2026 Highlight!

Training announcement:

Full-Day Malware Training on May 6th our workshop/training day: 𝗠𝗔𝗟𝗪𝗔𝗥𝗘 𝗗𝗘𝗩𝗘𝗟𝗢𝗣𝗠𝗘𝗡𝗧 𝗙𝗢𝗥 𝗘𝗧𝗛𝗜𝗖𝗔𝗟 𝗛𝗔𝗖𝗞𝗘𝗥𝗦 (𝗪𝗜𝗡𝗗𝗢𝗪𝗦, 𝗟𝗜𝗡𝗨𝗫, 𝗔𝗡𝗗𝗥𝗢𝗜𝗗) with Zhassulan Zhussupov aka cocomelonc @cocomelonckz@bird.makeup

Price: Included in your BSides 3-days ticket.

Whether you’re on the Red Team or Blue Team, this 8-hour, hands-on training reveals how real-world malware is built and evades defenses across Windows, Linux, and Android. Master injection techniques, persistence, privilege escalation (LSASS dump, UAC bypass), AV/EDR evasion (Anti‑VM, crypto tricks), Linux kernel injection, and Android malware abusing legit APIs – all via labs and homework exercises.

Led by cocomelonc: Author of Malware Development for Ethical Hackers (Packt), MALWILD, MD MZ, and AIYA Mobile Malware. Malpedia contributor, HVCK writer, cybersecurity lab co-founder, and speaker at Black Hat, DEFCON, Hack.lu, Security BSides, and more.

Requires Python, Kotlin, C/C++; assembly optional.

📅Conference: 6–8 May 2026 | 09:00–17:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/

Seats limited – turn malware reports into real skills! 🔥

#BSides #Community #ReverseEngineering #DFIR #MalwareAnalysis

We're discussing arranging a 'future of detection engineering' panel at #BSidesLuxembourg2026, but unfortunately the only pureplay-DE submissions we have on the topic are from men. And 'manels' are stinky by nature. DOES ANYONE KNOW SOMEONE NOT-white-male who is planning to (or would be interested in) attending BSidesLux and who is on the cutting edge of Detection Engineering? We tried to ask around, but so far no success. Please boost for reach. 😍

And ding ding 🛎️ , a lot of talk acceptance emails have gone out, plus a lot of emails we'd rather not have to send.

Due to budgetary restrictions, a lot of talks with high reviews may not be possible for us to schedule, so instead of rejecting them, we've asked the speakers if they could do the talks without support or with partial/reduced support from us.

But even so, the agenda is fleshing out, and looks amazing!

There's now also:

1. A cloud track
2. A secure development track
3. Even more workshops!

https://pretalx.com/bsidesluxembourg-2026/schedule/

Thank you everyone for all of your fantastic support and submissions, you're making this thing happen!

#BSidesLuxembourg2026 #BSides #Community #CFP

And as of right now, its possible to buy early bird tickets to 3 days of delicious delectable unforgettable #BSidesLuxembourg2026 content!

https://pretix.eu/BSidesLux/2026/