Security BSides Prague 2026: Full Schedule

It is an annual, community-driven information security conference held in Prague. The event provides a platform for cybersecurity professionals, enthusiasts, and researchers to share knowledge, exchange ideas, and discuss the latest trends in the field. It’s a unique opportunity to connect with like-minded individuals, expand professional networks, and stay informed about the ever-evolving cybersecurity landscape.
More info at www.bsidesprg.cz

arrow_back View All Dates

08:40 CEST

Opening talk

Thursday April 23, 2026 08:40 - 09:00 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Martin Hron will open BSides Prague 2026 with a short welcome session that sets the tone for the entire conference, introduces the spirit and community values of BSides, and provides essential information for all attendees. The talk will cover key organizational details about the venue, agenda, tracks, partners, and practical logistics, along with important reminders about the Code of Conduct and how to make the most of the day through networking and collaboration. This opening ensures everyone starts aligned, informed, and ready for a full day of cybersecurity knowledge sharing, discussions, and community-driven inspiration.

Speakers

Martin Hron

Staff Offensive Researcher, BSides Czech z.s. / SentinelOne

Thursday April 23, 2026 08:40 - 09:00 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

09:00 CEST

Keynote: Do Not Build the Torment Nexus

Thursday April 23, 2026 09:00 - 09:45 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Speakers

Eva Galperin

Director of Cybersecurity, Electronic Frontier Foundation

Eva Galperin is the Director of Cybersecurity at the Electronic Frontier Foundation (EFF) and technical advisor for the Freedom of the Press Foundation. She is noted for her extensive work in protecting global privacy and free speech and for her research on malware and nation-state... Read More →

Thursday April 23, 2026 09:00 - 09:45 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

10:10 CEST

Adventures in Router Firmware Through Dynamic Taint Analysis

Thursday April 23, 2026 10:10 - 10:35 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

While the security industry is captivated by AI/ML advancements, the fundamentals of VR remain as critical as ever. This presentation returns to these essentials, demonstrating advanced techniques for discovering firmware vulnerabilities, the most prevalent security flaw in router firmware.

Speakers

Ravshan Rikhsiev

Researcher, ONESEC

I am currently a Cybersecurity Researcher at ONESEC, dedicated to uncovering new challenges and pushing the boundaries of cybersecurity. With over three years of hands-on experience in the field, I have developed a deep passion for binary exploitation, vulnerability research, firmware... Read More →

Thursday April 23, 2026 10:10 - 10:35 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

10:10 CEST

From Prompt to Pwn: Abusing Browser Small Language Models

Thursday April 23, 2026 10:10 - 10:55 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

The Chrome browser's new Prompt API opens up the next frontier of AI exploitation: for the first time, a local AI model is embedded directly into the browser’s runtime environment. This presentation shows how browsers can be turned into high-value AI exploitation platforms, and what to do about it.

Speakers

Eyal Arazi

LayerX Security

Eyal Arazi is Director of Strategy at LayerX Security. He has over 15 years of offensive and defensive cybersecurity experience, on both the application and network layers. He has also written and spoken on topics of cybersecurity extensively.

Thursday April 23, 2026 10:10 - 10:55 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

10:40 CEST

JA3/JA4+ hashes: A "Secret" Fingerprint Identifying Bots and Scrapers

Thursday April 23, 2026 10:40 - 11:05 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

The internet is full of bots and some aren't nice (DDoS, scraping, exploits, AI..). To block bots, we must identify them in the traffic. That's hard as some pretend to be human/browsers! Let's explore JA3 (and their successor JA4+) hashes - a lesser-known method based on the client TLS capabilities.

Speakers

Miloslav Homer

Lead Application Security Architect, Sandoz

I am a defender, a hacker, a tinkerer. My focus is on application security, linux (vim FTW), and python. Coming from a cryptography background, I managed to up my tech skills, practiced pentesting, and completed OSCP. I switched to the protective side, currently working in security... Read More →

Thursday April 23, 2026 10:40 - 11:05 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

11:00 CEST

Building Deception at Scale: Automating Honeypots with Autonomous AI Agents

Thursday April 23, 2026 11:00 - 11:45 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

What if honeypots could deploy, adapt, and learn on their own? See how autonomous AI agents build realistic deception environments targeting vibe-coded and AI-built apps, interact with real attackers, and uncover exploitation patterns-without constant human tuning.

Speakers

Yotam Perkal

Director, Security Research, Pluto Security

Gil Maman

CO-Founder & CTO, Pluto Security

Gil Maman is the Co-Founder and CTO of Pluto Security.

Prior to founding Pluto, Gil spent more than six years in Israeli Military Intelligence, where he held multiple technical leadership roles spanning advanced cyber R&D, operational security engineering, and leading multidiscipl... Read More →

Thursday April 23, 2026 11:00 - 11:45 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

11:10 CEST

Malware Evasion - Packers, Loaders, and Why Your EDR Misses Them

Thursday April 23, 2026 11:10 - 11:35 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Are your Linux security systems truly protecting you? This cutting-edge presentation exposes a critical blind spot in modern cybersecurity: sophisticated Linux malware packers and loaders that are silently evading detection across enterprise environments.

Speakers

Massimo Bertocchi

SIX group AG

Massimo Bertocchi is a cybersecurity professional currently working in the Threat Detection and Hunting team at SIX Group in Zürich, Switzerland. He holds dual master's degrees in Security and Cloud Computing from two European institutions: KTH Royal Institute of Technology in Stockholm... Read More →

Thursday April 23, 2026 11:10 - 11:35 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

11:40 CEST

Prompt, Pwn, Profit: A $30k Deep Dive into AI Agent Vulnerabilities

Thursday April 23, 2026 11:40 - 12:05 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

I earned over $30,000 by exploiting 25 vulnerabilities in major AI Agents like Claude Code, Google Gemini, and other. This talk reveals the specific techniques— Argument Injection, Regex bypasses, AST limitation and Sandbox escapes—used to turn "safe" coding assistants into weapons for RCE.

Speakers

Vasyl Spachynskyi

I’m a security researcher from Ukraine. Yes—we’re still here, and we’re still doing security research.

I studied cybersecurity and computer science starting in 2010 and hold a Master’s degree in the field. I have nearly 15 years of experience as a software developer, w... Read More →

Thursday April 23, 2026 11:40 - 12:05 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

11:50 CEST

Exploit is in the logic: Reversing an Android application to hack transactions on an NFC tag.

Thursday April 23, 2026 11:50 - 12:35 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

A punk journey in a home-made reversing engineering project to hack an NFC tag for ̶p̶r̶o̶f̶i̶t̶ ̶a̶n̶d̶ ̶f̶u̶n̶ free drinks (and fun, it's always about fun). Reversing a Hermes-encoded Android bundle to understand how an NFC tag (NXP NTAG 21X) works and how to exploit it.

Speakers

Luigi Gubello

Senior Security Engineer

Security Engineer. Sometimes I try to hack stuff. Investigated by the authorities due to an SQL injection, financed by the powers that be, someone said.

Thursday April 23, 2026 11:50 - 12:35 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

12:10 CEST

Harder, Better, Faster, Stronger: Because “FROM ubuntu:latest” Is a Supply-Chain Horror Story

Thursday April 23, 2026 12:10 - 12:25 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Most Docker images are obese, vulnerable, and emotionally unstable. Let’s go Harder, Better, Faster, Stronger—cut the fat, drop root, and make containers so minimal attackers think they’re hallucinating.

Speakers

Vojtech Trcka

Product Security Engineer, Tricentis

I’m Vojtěch, better known as TheSysRat — a cybersecurity maniac in the best sense of the word. I work as a Product Security Engineer at Tricentis, spend my free time on CTFs, and publish detailed write-ups to help others learn. I’m a Linux-first technologist who loves building... Read More →

Thursday April 23, 2026 12:10 - 12:25 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

13:35 CEST

How Infostealers slipped through EDRs - Process Doppleganging by IDAT Loader for over 18 months

Thursday April 23, 2026 13:35 - 14:20 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Infostealers slip through EDR engines by obfuscating code but at later stage of kill chain when they reconstruct their code or inject into a benign process, they start leaving some tips for hunters and our talk covers over 12 tricks unique to IDAT Loader that bypassed over 100 cases.

Speakers

Archana Manoharan

Threat Hunter, Cyberproof

I’m a cybersecurity threat hunter focused on identifying and mitigating advanced threats across enterprise environments. My work revolves around proactive threat hunting, vulnerability analysis, and building detection logic using tools like Microsoft Defender, Sentinel, and other... Read More →

Niranjan Jayanand

CyberProof

Niranjan holds over 18 years experience working with SentinelOne, Microsoft, CyberProof, McAfee, Symantec and HCL Technologies working on malware detection, reverse engineering, developing cleaning utilities etc. He has published his research in multiple blogs, journals and presented... Read More →

Thursday April 23, 2026 13:35 - 14:20 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

13:35 CEST

Inside the Fortress: Attacking RFID Access Control Systems

Thursday April 23, 2026 13:35 - 14:20 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

RFID access control systems have become one of the primary ways in which corporate and residential buildings around the world control physical access. Thus, in this talk, we will address some of the main security issues presented by these systems, from bypass techniques to long-range tag cloning.

Speakers

Marco Sanchez

Security Consultant at Bishop Fox, member of RF Village MX, enthusiast of electronics, hardware hacking, hiking, music, and radio frequencies. Works as a penetration tester testing web applications, APIs, mobile applications, cloud, and networks. Has been a speaker at Ekoparty (Argentina... Read More →

Thursday April 23, 2026 13:35 - 14:20 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

14:25 CEST

Ghost in the Script: Impersonating Google App Script projects for stealthy persistence

Thursday April 23, 2026 14:25 - 15:10 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

This talk will go through how Google Apps Script projects work and how an attacker can utilize the Apps Script projects to persist in a target’s environment. Then, we will look into how these techniques can be detected and prevented, so they will not be able to be maliciously utilized by attackers.

Speakers

Jakub Pavlík

Head of Engineering, Exaforce

Working on Exaforce. It is an early stage startup working on difficult engineering and operations problems faced by security, devops, and SRE teams. We are a group of engineers from Google, Palo Alto Networks, F5 and are backed by some of my favorite VC firms - Mayfield, Khosla Ventures... Read More →

Bleon Proko

Exaforce

Bleon is an Info-sec passionate about Infrastructure Penetration Testing and Security, including Active Directory, Cloud (AWS, Azure, GCP, Digital Ocean), Hybrid Infrastructures, as well as Defense, Detection and Thread Hunting. He has presented in conferences like BlackHat and BSides... Read More →

Thursday April 23, 2026 14:25 - 15:10 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

14:25 CEST

The CSI Hijack: Default Kubernetes Storage Drivers Exploitation

Thursday April 23, 2026 14:25 - 15:10 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

We demonstrate multiple new 0days and insecure defaults in EKS/EKS Auto - AWS kubernetes enabling escalation from Kubernetes access to full AWS account data-plane control + 0day and similar CSI/IAM flaws in AKS and GKE enabling admin-level escalation. We also show control-plane ransomware via CSI.

Speakers

Shaul Ben Hai

Idan Nagar

Karan Bamal

Senior Security Researcher, Offensive Research Team, SentinelOne

Senior Security Researcher @ SentinelOne (Offensive Research Team). Previously @ PingSafe, acquired by SentinelOne for $120M+.

I work on 0-day discovery, EDR/XDR internals, cloud-native attacks (Kubernetes, Azure, AWS), and AI-driven detection research. All hats offensive.

Certs - ... Read More →

Thursday April 23, 2026 14:25 - 15:10 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

15:20 CEST

(Security) Operations fuckups

Thursday April 23, 2026 15:20 - 15:45 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

The most things you learn with failures. That is known wisdom, but it is hard to allow yourself to fail, when you are a newbie in the field, right? This talk is focusing on sharing of the most epical (security) operation fails and WTF moments - not only for laughter, but also to support new talents.

Speakers

Nicol Daňková

Friendly face of cybersecurity, grown and rotted in incident response. Seen a lot, including many weird people and even weirder incidents - including strangest excuses. Trying to de-mistify obscure topics and I openly hate buzzword technologies.

Thursday April 23, 2026 15:20 - 15:45 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

15:20 CEST

Cloud Agent to Physical Access: How Cursor Unlocked My Front Door

Thursday April 23, 2026 15:20 - 15:45 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Cursor cloud agents promise isolation, but new research reveals a cloud→local attack chain. Using Cursor’s client‑server interaction, an attacker can trigger arbitrary URI handlers on the victim's machine with impact ranging from potential RCE to physical impact via smart IoT devices.

Speakers

Roi Nisimi

Orca Security

Roi Nisimi is a Principal Security Researcher at Orca Security with over a decade of experience in vulnerability research and offensive cybersecurity. He honed his skills during six years of service in the Intelligence Corps of the IDF, where he achieved the rank of Lieutenant before... Read More →

Ari Marzuk

Senior Security Researcher, Microsoft

Ari Marzuk (also known as MaccariTA) is a Senior AI Security Researcher at Microsoft with nearly a decade of cybersecurity experience. He previously worked for Salesforce, NSO Group and the Israeli Military Intelligence. In 2025, Ari published "IDEsaster" revealing 25 new CVEs in... Read More →

Thursday April 23, 2026 15:20 - 15:45 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

16:10 CEST

Blind the Kernel: Subverting Integrity Checks via Semantic Asymmetry

Thursday April 23, 2026 16:10 - 16:55 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Kernels trust processes—but they shouldn't. We expose the architectural manipulation of ZwQueryVirtualMemory used by latest malwares. See the "Twin Patch" evasion in action, and learn why modern malware is shattering the foundation of Windows security. Trust is dead.

Speakers

Tejaswini Sandapolla

Sentinelone

Tejaswini Sandapolla is a Senior Malware Detection Researcher at SentinelOne with over seven years of specialized experience in cybersecurity, focusing primarily on reverse engineering. She has made significant contributions to the cyber security community through her in-depth analysis... Read More →

Thursday April 23, 2026 16:10 - 16:55 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

16:10 CEST

Hunting Malicious Domains at Scale with AI-Augmented OSINT

Thursday April 23, 2026 16:10 - 16:55 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

Through real-world examples, we'll walk through how AI can be used to surface emerging malicious domain activity, explain attacker intent from sparse signals, and automatically route high-confidence findings into Slack, SIEM, and SOAR workflows without overwhelming analysts.

Speakers

Zohar Buber

Cato Networks

Zohar Buber is a security analyst in Cato Research Labs at Cato Networks. He focuses on network protocol analysis and malicious traffic detection, specializing in threat identification using network-based methods. He previously worked at Radware, where he examined threats in the DDoS... Read More →

Thursday April 23, 2026 16:10 - 16:55 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

17:00 CEST

The Forgotten Fingerprint: OSINT Through DNS TXT Record Analysis

Thursday April 23, 2026 17:00 - 17:25 CEST

Lucerna Cinema - MAIN @ Vodičkova 704 /36/110 00, 110 00 Nové Město

This talk explores a DNS-based OSINT technique that reveals hidden services and tech dependencies through TXT record analysis. Learn how these overlooked records expose valuable insights for offensive and defensive security, and how to integrate this into recon workflows using Nuclei and Amass

Speakers

Rishi C.

Senior Security Researcher, KYND

Rishi is a London-based security researcher with experience in vulnerability research, threat intelligence, and enterprise risk analysis. His work focuses on identifying zero-day vulnerabilities and emerging CVEs, with a particular interest in building detection logic before threats... Read More →

Thursday April 23, 2026 17:00 - 17:25 CEST
Lucerna Cinema - MAIN Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

17:00 CEST

Who defends the defenders? EDR killers landscape boom

Thursday April 23, 2026 17:00 - 17:25 CEST

Lucerna Cinema - AUX @ Vodičkova 704 /36/110 00, 110 00 Nové Město

In 2025, the landscape of EDR killers, tools to evade EDRs, expanded significantly, especially with a tight connection to ransomware. Our talk moves beyond the abused vulnerable drivers and explores where do these tools come from, who uses them and how we can leverage them for research and defense.

Speakers

Radek Jizba

Malware Researcher, ESET

Radek Jizba graduated from the Computer Security program at Czech Technical University (FIT CTU)[NF1] in 2022 and started working at ESET. Since 2023 he has worked as a malware researcher with a focus on crimeware. Among his publications you can find Telekopye: Hunting Mammoths u... Read More →

Tomáš Zvara

ESET

Tomáš Zvara is a malware researcher at ESET, specializing in malware analysis, reverse engineering, and threat intelligence. As part of ESET’s Prague crimeware research team, he focuses on financially motivated threat actors, with a particular emphasis on prominent ransomware... Read More →

Thursday April 23, 2026 17:00 - 17:25 CEST
Lucerna Cinema - AUX Vodičkova 704 /36/110 00, 110 00 Nové Město

talk

08:40 CEST

09:00 CEST

10:10 CEST

10:10 CEST

10:40 CEST

11:00 CEST

11:10 CEST

11:40 CEST

11:50 CEST

12:10 CEST

13:35 CEST

13:35 CEST

14:25 CEST

14:25 CEST

15:20 CEST

15:20 CEST

16:10 CEST

16:10 CEST

17:00 CEST

17:00 CEST

Get help with the event