2.0 -//Pentabarf//Schedule//EN PUBLISH 9W78TE@@speak.enusec.org -9W78TE Registration opens en en 20260516T090000 20260516T094500 0.04500 Registration opens PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/9W78TE/ Track 1 PUBLISH YS3HC9@@speak.enusec.org -YS3HC9 OPENING REMARKS en en 20260516T094500 20260516T100000 0.01500 OPENING REMARKS PUBLIC CONFIRMED Lighting Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/YS3HC9/ Track 1 Team ENUSEC (Connor, Scott, Lewis, Xander & Eden) PUBLISH BDHGW8@@speak.enusec.org -BDHGW8 KEYNOTE - History’s Blueprint for Cyber Resilience en en 20260516T100000 20260516T103000 0.03000 KEYNOTE - History’s Blueprint for Cyber Resilience PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/BDHGW8/ Track 1 Gemma Barrow PUBLISH S73CHT@@speak.enusec.org -S73CHT Automating Chaos at Scale en en 20260516T103000 20260516T113000 1.00000 Automating Chaos at Scale This talk explores how to weaponise AI for rapid idea-to-tool pipelines taking half-formed, borderline chaotic ideas and turning them into working tools, side projects, and offensive experiments at speed. Not polished SaaS. Not over-engineered platforms. Building chaos at scale. I’ll walk through how AI can be used to: • Break past the “I’ll build that someday” backlog • Prototype tools in hours instead of weeks • Explore unconventional or “bad” ideas safely and quickly • Chain together automation, code generation, and testing loops • Validate whether something is genuinely useful or just noise Along the way, I’ll look at real examples of AI-assisted builds: from scrappy utilities to fully functional tooling that would never have existed without lowering the barrier to execution. This isn’t about replacing developers. It’s about removing friction and what happens when that friction disappears. PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/S73CHT/ Track 1 Andy Gill PUBLISH BMXMF8@@speak.enusec.org -BMXMF8 How does AI, Geopolitics impact on the cyber landscape ? What can you do to “hack” your brain for a resilient career ! en en 20260516T114000 20260516T121000 0.03000 How does AI, Geopolitics impact on the cyber landscape ? What can you do to “hack” your brain for a resilient career ! PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/BMXMF8/ Track 1 James K. PUBLISH N3Z8CW@@speak.enusec.org -N3Z8CW Panel Discussion - What it’s really like to work in cyber security in a large organisation? en en 20260516T124000 20260516T131000 0.03000 Panel Discussion - What it’s really like to work in cyber security in a large organisation? PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/N3Z8CW/ Track 1 PUBLISH Z9VD7V@@speak.enusec.org -Z9VD7V Securing ATMs: 101 en en 20260516T131000 20260516T134000 0.03000 Securing ATMs: 101 PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/Z9VD7V/ Track 1 Kerry Archibald PUBLISH EEMPKG@@speak.enusec.org -EEMPKG Ghosts in the Cluster - Hiding in Kubernetes for Years en en 20260516T134000 20260516T141000 0.03000 Ghosts in the Cluster - Hiding in Kubernetes for Years PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/EEMPKG/ Track 1 Rory McCune PUBLISH DNQMKH@@speak.enusec.org -DNQMKH The eCrime Ecosystem: How Cybercriminals Operate and How We Track Them en en 20260516T142000 20260516T145000 0.03000 The eCrime Ecosystem: How Cybercriminals Operate and How We Track Them PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/DNQMKH/ Track 1 David Rowney PUBLISH VHZED7@@speak.enusec.org -VHZED7 Meet the Fixers: How One Social Engineering Technique Spawned a Family and How to Catch It en en 20260516T145000 20260516T155000 1.00000 Meet the Fixers: How One Social Engineering Technique Spawned a Family and How to Catch It PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/VHZED7/ Track 1 Cameron Cottam PUBLISH NNBFMC@@speak.enusec.org -NNBFMC The Nightmare before Christmas en en 20260516T155000 20260516T162000 0.03000 The Nightmare before Christmas PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/NNBFMC/ Track 1 Samantha Varley PUBLISH Z9MJ8X@@speak.enusec.org -Z9MJ8X Hot Singles In Your Area Want Your Session Tokens en en 20260516T162000 20260516T172000 1.00000 Hot Singles In Your Area Want Your Session Tokens We’re going to log into someone else’s email account - and they’re going to help us do it! From phishing to MFA bypass to session hijacking, this session walks through a real-world BEC attack chain end-to-end. Then we ruin the attacker’s day by showing exactly how to stop it. PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/Z9MJ8X/ Track 1 Michael Varley PUBLISH GBRHXN@@speak.enusec.org -GBRHXN No Signature, No Problem: Detecting the Coming 0-Day Flood en en 20260516T172000 20260516T175000 0.03000 No Signature, No Problem: Detecting the Coming 0-Day Flood Detection engineering has always been a race: find a vuln, reverse the exploit, write a signature, push it out, hope you beat the attackers. That race was losing even before automation. With AI-driven vulnerability discovery, the race is over. The discovery rate is about to dwarf the signature-authoring rate by orders of magnitude, and a meaningful fraction of those findings will be weaponised before any defender has them. That leaves one brute mathematical fact: you cannot write a signature for something you don't know exists. The only detection strategy that survives this world is one that looks for the effects of exploitation rather than its fingerprints. Statistical anomaly detection. In this talk we'll cover: The supply-side economics of AI vuln discovery, and why 0-day proliferation is structurally inevitable rather than speculative Why signature-based detection breaks down in this regime, with numbers What "anomaly detection" actually means (time-series, graph, distribution-based), and the crucial distinctions most vendors blur Real examples: detections that caught novel behaviour in production vs. the ones that generated 400 alerts a day The analyst UX problem: explainability, triage, and why most ML detections die in the SOC A pragmatic starting point for teams without a PhD on staff This is a hardened follow-up to a talk given at Cyber Scotland Connect in 2025, updated for a world where vulnerability discovery itself has been automated. PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/GBRHXN/ Track 1 Aidan McLaughlin PUBLISH JEDJGG@@speak.enusec.org -JEDJGG CLOSING REMARKS en en 20260516T175000 20260516T180500 0.01500 CLOSING REMARKS PUBLIC CONFIRMED Lighting Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/JEDJGG/ Track 1 Team ENUSEC (Connor, Scott, Lewis, Xander & Eden) PUBLISH T3RRT7@@speak.enusec.org -T3RRT7 AFTERPARTY en en 20260516T183000 20260516T193000 1.00000 AFTERPARTY PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/T3RRT7/ Track 1 PUBLISH FEEBJU@@speak.enusec.org -FEEBJU You’ve Been Ph0ned: How Attackers Compromise Organisations Via Telephone Social Engineering en en 20260516T114000 20260516T121000 0.03000 You’ve Been Ph0ned: How Attackers Compromise Organisations Via Telephone Social Engineering While just about everyone has trained users not to click suspicious emails, attackers have quietly moved to the channel nobody prepared for: the phone. From retail giants and luxury brands to automotive manufacturers and casino operators - all have suffered massive financial damages from attacks that started with something as simple as a phone call. Drawing from real world red teaming engagements, Luiz will walk through the modern vishing playbook: how attackers research targets, craft believable pretexts, pressure helpdesks into breaking their own security policies, and bypass multi factor authentication that was supposed to end credential theft. The talk includes a live AI voice cloning demonstration, honest discussion of the ethical challenges in realistic social engineering testing, and practical defences that go beyond "just be suspicious of phone calls". PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/FEEBJU/ Track 2 Luiz S PUBLISH FZX9DN@@speak.enusec.org -FZX9DN The Dark Sorcery of Video Encoding en en 20260516T131000 20260516T134000 0.03000 The Dark Sorcery of Video Encoding Video takes up a LOT of data. Each pixel is 3 bytes if you're only using 8 bit colour and the numbers get wild as resolution, framerate and bit depth goes up. How does video encoding work in general? What improvements have we seen throughout history? Could the planet's infrastructure survive a world without video compression? Should you maybe use GPU encoding for your video projects? (Spoiler: Yes) Time to dig into one of those things we never even think about, let alone take for granted - Video encoding. PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/FZX9DN/ Track 2 Del Angel Stormreul PUBLISH SAGKR7@@speak.enusec.org -SAGKR7 Not Just Tech: The People and Politics of Cyber en en 20260516T134000 20260516T135500 0.01500 Not Just Tech: The People and Politics of Cyber PUBLIC CONFIRMED Lighting Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/SAGKR7/ Track 2 Imogen McCall PUBLISH TYSGCW@@speak.enusec.org -TYSGCW Testing What the Scanner Missed: A Bug Bounty Perspective en en 20260516T142000 20260516T145000 0.03000 Testing What the Scanner Missed: A Bug Bounty Perspective PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/TYSGCW/ Track 2 Suresh Aydi PUBLISH QS9WQH@@speak.enusec.org -QS9WQH From Data to Defense: Real-World Cyber Threat Intelligence & Threat Hunting en en 20260516T145000 20260516T155000 1.00000 From Data to Defense: Real-World Cyber Threat Intelligence & Threat Hunting This session dives into the practical side of Cyber Threat Intelligence (CTI) and Threat Hunting, focusing on how defenders can anticipate, detect, and respond to modern cyber threats. We will begin by understanding what threat intelligence really means beyond buzzwords, covering its lifecycle, types, and how it integrates into real security operations. The session then explores attacker behavior using frameworks like MITRE ATT&CK and the Cyber Kill Chain, helping attendees understand how adversaries think, move, and exploit systems. A key part of the talk will focus on threat hunting — how to proactively search for threats using indicators of compromise (IOCs), behavioral patterns, and attacker TTPs. We will also walk through a real-world inspired case study based on large-scale global events (such as international sporting events). By the end of the session, attendees will: Understand how to apply CTI in real environments Learn how to identify high-value detection signals (TTPs vs IOCs) Gain a beginner-friendly roadmap to start threat hunting Be able to think like both an attacker and a defender This talk is designed for students, beginners, and intermediate cybersecurity enthusiasts who want practical, actionable insights not just theory. PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/QS9WQH/ Track 2 Ayush Aggarwal PUBLISH T7937A@@speak.enusec.org -T7937A Burning the candle at all ends - a burnout talk en en 20260516T155000 20260516T162000 0.03000 Burning the candle at all ends - a burnout talk PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/T7937A/ Track 2 Kit PUBLISH QFVNJL@@speak.enusec.org -QFVNJL Dumb shit in history 3.0 en en 20260516T162000 20260516T165000 0.03000 Dumb shit in history 3.0 PUBLIC CONFIRMED Normal Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/QFVNJL/ Track 2 Jon PUBLISH 7DSCQG@@speak.enusec.org -7DSCQG Lockpicking & Physical Security Village en en 20260516T100000 20260516T113000 1.03000 Lockpicking & Physical Security Village PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/7DSCQG/ Track 3 PUBLISH ZR3GKH@@speak.enusec.org -ZR3GKH Hiding in Plain Sight - OSINT CTF (workshop) en en 20260516T131000 20260516T141000 1.00000 Hiding in Plain Sight - OSINT CTF (workshop) Open Source Intelligence (OSINT) CTF PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/ZR3GKH/ Track 3 Luiz S PUBLISH RJMCQN@@speak.enusec.org -RJMCQN Doors Open - Day 2 en en 20260517T093000 20260517T103000 1.00000 Doors Open - Day 2 PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/RJMCQN/ Track 1 PUBLISH KEESQ9@@speak.enusec.org -KEESQ9 Welcome en en 20260517T103000 20260517T104500 0.01500 Welcome PUBLIC CONFIRMED Lighting Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/KEESQ9/ Track 1 Team ENUSEC (Connor, Scott, Lewis, Xander & Eden) PUBLISH EDFY3Z@@speak.enusec.org -EDFY3Z CTF - Morning en en 20260517T104500 20260517T120000 1.01500 CTF - Morning PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/EDFY3Z/ Track 1 PUBLISH 89DEJE@@speak.enusec.org -89DEJE Lunch - Day 2 en en 20260517T120000 20260517T130000 1.00000 Lunch - Day 2 PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/89DEJE/ Track 1 PUBLISH BCNJVW@@speak.enusec.org -BCNJVW CTF resumes en en 20260517T130000 20260517T163000 3.03000 CTF resumes PUBLIC CONFIRMED Long Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/BCNJVW/ Track 1 PUBLISH MUEAY9@@speak.enusec.org -MUEAY9 CTF - Prizes and event ends en en 20260517T163000 20260517T164000 0.01000 CTF - Prizes and event ends PUBLIC CONFIRMED Lighting Talk https://speak.enusec.org/le-tour-du-hack-2026/talk/MUEAY9/ Track 1