2.0 -//Pentabarf//Schedule//EN PUBLISH R8ZTV9@@cfp.dragonsec.si -R8ZTV9 Don't let them break you: a CTF infrastructure whitepaper en en 20260321T100000 20260321T102500 0.02500

Don't let them break you: a CTF infrastructure whitepaper

PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/R8ZTV9/ PA Rok Štular PUBLISH YARFSQ@@cfp.dragonsec.si -YARFSQ How do we effectively communicate about INFOSEC? en en 20260321T103000 20260321T105500 0.02500

How do we effectively communicate about INFOSEC?

I will talk about some recent experiences and about how, in our field, we seem to be constantly going for shock and awe, rather than lowering the blood pressure of everyman. We should also discuss people skills, when it comes to voncersing with fellow humans. PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/YARFSQ/ PA David Modic PUBLISH 33KECY@@cfp.dragonsec.si -33KECY From Beginner to Pro Hacker: Practical Approach to Offensive Security Training en en 20260321T113000 20260321T115500 0.02500

From Beginner to Pro Hacker: Practical Approach to Offensive Security Training

Transitioning from theoretical knowledge to practical offensive security skills remains a significant challenge for many learners. While concepts are widely documented, the ability to apply them in realistic environments is often missing. This session presents a methodology for developing hands-on skills through controlled lab environments that simulate real-world infrastructures. The focus is on core offensive techniques, including enumeration, vulnerability identification, exploitation, and post-exploitation, with an emphasis on chaining weaknesses into meaningful attack paths. Drawing from recent penetration testing experience, including the discovery of vulnerabilities, the session highlights how legacy systems and misconfigurations continue to introduce exploitable conditions in modern networks. PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/33KECY/ PA Žan Urbančič Danijela Šantak PUBLISH NZGV7M@@cfp.dragonsec.si -NZGV7M Compliance of Electronic Products in the EU: From Electrical Safety and EMC to Cybersecurity under RED en en 20260321T120000 20260321T125000 0.05000

Compliance of Electronic Products in the EU: From Electrical Safety and EMC to Cybersecurity under RED

PUBLIC CONFIRMED Lecture https://cfp.dragonsec.si/dctf26/talk/NZGV7M/ PA Marko Jankovec PUBLISH PLTQ8Z@@cfp.dragonsec.si -PLTQ8Z Zero to RCE in a Weekend: Fuzzing Old Games for Memory Corruption en en 20260321T143000 20260321T145500 0.02500

Zero to RCE in a Weekend: Fuzzing Old Games for Memory Corruption

PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/PLTQ8Z/ PA Rick de Jager PUBLISH 9LETXX@@cfp.dragonsec.si -9LETXX Unfaithful Claims: Breaking 6 zkVMs en en 20260321T150000 20260321T152500 0.02500

Unfaithful Claims: Breaking 6 zkVMs

PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/9LETXX/ PA Andraž Strgar PUBLISH QWPGK3@@cfp.dragonsec.si -QWPGK3 Anonymous Credentials for Next-Generation Rate Limiting: From Linear to Constant-Size Issuance en en 20260321T153000 20260321T155500 0.02500

Anonymous Credentials for Next-Generation Rate Limiting: From Linear to Constant-Size Issuance

PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/QWPGK3/ PA Lena Heimberger PUBLISH TNAZ7R@@cfp.dragonsec.si -TNAZ7R When Correct Code leaks Secrets: Side Channels Explained en en 20260321T163000 20260321T172000 0.05000

When Correct Code leaks Secrets: Side Channels Explained

PUBLIC CONFIRMED Lecture https://cfp.dragonsec.si/dctf26/talk/TNAZ7R/ PA Hannes Weissteiner PUBLISH 9EU38Y@@cfp.dragonsec.si -9EU38Y How can one do security in a fully modular kernel? en en 20260321T173000 20260321T175500 0.02500

How can one do security in a fully modular kernel?

This talk will cover some of the classic methods of security when it comes to kernels and operating systems, then it will throw those backward ideas out of the window because basically none of them are compatible with my idea of a fully modular kernel! but then you might ask, a fully modular kernel? Well i've been working on this "side" project in my free time for quite a while, it's a custom kernel where (almost) all components of the kernel are loadable modules, that means you can switch out parts of your kernel whenever you want! Which sounds perfectly awesome, but just so happens to be a security nightmare! In any other currently popular operating system allowing any user to load kernel modules is a terrible idea, but maybe it doesn't have to be in my custom kernel? PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/9EU38Y/ PA Andraž Rotar PUBLISH ULRU9Q@@cfp.dragonsec.si -ULRU9Q Capture the Flag in SOC en en 20260321T180000 20260321T182500 0.02500

Capture the Flag in SOC

What does cybersecurity look like in practice? Through the Capture the Flag approach, the lecture will show how threat detection, incident analysis, and finding the right answers under time pressure take place in a SOC environment. Participants will learn why these types of challenges are important for developing practical skills, analytical thinking, and effective teamwork. PUBLIC CONFIRMED Talk https://cfp.dragonsec.si/dctf26/talk/ULRU9Q/ PA Peter Hutinski Peter Pavkovič Matic Šebjan Ogrizek