Swiss CyberSecurity Conference

March 10-15, 2025
Lausanne, Switzerland

🚨 EU-CH Cybersecurity Regulatory Landscape’s workshop

13 March 2025

Due to communication issues regarding the schedule, we confirm that EU-CH Cybersecurity Regulatory Landscape’s workshop is set for 2:30 PM…

More info

🚨 Only a few days left to register!

03 March 2025

🛡️There are only a few days left to register for some of Europe’s biggest cyber events. Tickets for workshops close…

More info

🎉Join Our Exciting Prize Draw!

27 February 2025

Don’t miss your chance to win a PlayStation 5 or a LEGO NASA Artemis launch pad! Simply visit each sponsor…

More info

About the event

Insomni’hack is a Swiss cybersecurity conference and hacking contest

Founded and organized by Orange Cyberdefense Switzerland (formerly SCRT SA) - since 2008.

What started as a small-scale hacking contest in 2008, has now become one of the largest cybersecurity events in Switzerland and neighboring Europe, as well as one of the largest on-site CTF’s worldwide gathering a wide spectrum of cybersecurity professionals and enthusiasts from all over the globe.

About us

Venue

SwissTech Convention Center
Lausanne, Switzerland

Quartier Nord EPFL
Route Louis-Favre 2
1024 Ecublens
Switzerland

Days

Workshops

20+

Talks

Party

CTF

Organized by

20 years of cybersecurity automation: has AI restored balance to the force?

View all talks

Workshops

Advanced Detection Engineering in the Enterprise

March 10th, 11th & 12th, 2025

Your organization’s recent red teaming exercise revealed critical gaps in detecting advancedattacks, which bypassed the out-of-the-box detections. Now, it’s time…

More info

Web Application Security

March 11th & 12th, 2025

This is a hands-on training which covers a broad scope of vulnerabilities that can be found in Web applications. The objective is…

More info

Attacking Mobile Applications

March 11th & 12th, 2025

This mobile training covers common vulnerabilities that can be discovered in Android & iOS mobile applications. The participants will discover the methodology…

More info

View all workshops

The agenda

March 13, 2025

March 14, 2025

March 13, 2025

Time	CAMPUS (AUDITORIUM B)	CLOUD (AUDITORIUM C)	GARDEN (ROOM 1ABC)	SIDE EVENTS (ROOM 2C)
09:00 - 09:50	(KEYNOTE) Advanced Android Archaeology: Baffled By Bloated Complexityby Mathias Payer		CLOSED
10:00 - 10:30	COFFEE
10:30 - 11:20	Beyond LSASS: Cutting-Edge Techniques for Undetectable Threat Emulationby Priyank Nigam	Captain MassJacker Sparrow: Uncovering the Malware's Buried Treasureby Ari Novick	CLOSED	EU-CH Cybersecurity Regulatory Landscape (FR)by Soheila Firouz Kouhi
11:30 - 12:20	You can't touch this: Secure Enclaves for Offensive Operationsby Matteo Malvica & Cedric Van Bockhaven	Ghost in the RaaS: Ransomware-as-a-Service from the perspective of an affiliateby Carlos Ishimaru	What if I told you that Security is here to help? (a.k.a. The 7 habits of Highly Effective Security Leaders)by Sebastian Avarvarei	(continued)
12:30 - 13:30	LUNCH
13:30 - 14:20	Demystifying Automated City Shuttles: Blessing or Cybersecurity Nightmare?by Anastasija Collen	Code to Cloud: Exploiting Modern Web Applications to Breach Cloud Environmentsby Christophe Tafani-Dereeper	(Panel) Next-Gen Hiring Meets AI, Cybersecurity, and Inclusionby Nathalie Brodard & Line Pillet & Lennig Pedron & Nagib Aouini
14:30 - 15:20	Pioneering zero days at Pwn2Own Automotive 2024by Alex Plaskett & McCaulay Hudson	Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure ADby Ilan Kalendarov & Elad Beber	(Panel) Cyber Innovationby Laurent Balmelli & Hugo Flayac & Aziz Belkhiria & Olivier Crochat & Lennig Pedron	EU-CH Cybersecurity Regulatory Landscape (EN)by Soheila Firouz Kouhi
15:30 - 16:00	COFFEE
16:00 - 16:50	Access Granted: Uncovering RFID Readers Vulnerabilities & Bypassing Physical Access Controlsby Julia Zduńczyk	EL3XIR: Fuzzing COTS Secure Monitorsby Marcel Busch & Christian Lindenmeier	Stop making nonsense – Cutting through compliance complexityby Mat Caplan	16:30 Présentation (avant-première) Offre Micro-SOCby Orange Cyberdefense Switzerland
17:00 - 17:50	Unlocking the Cybersecurity Secrets of Modern Vehiclesby YUQIAO NING	Hack, Patch, Repeat: Insider Tales from Android’s Bug Bountyby Maria Uretsky & Olivier Tuchon	CLOSED

March 14, 2025

Time	CAMPUS (AUDITORIUM B)	CLOUD (AUDITORIUM C)	GARDEN (ROOM 1ABC)	SIDE EVENTS (ROOM 2C)
09:00 - 09:50	Introduction by Raphaël Conz (SPEI, Canton de Vaud) (KEYNOTE) The AI Paradox: Safety vs Performance by Rachid Guerraoui		CLOSED
10:00 - 10:30	COFFEE
10:30 - 11:20	The Rise of AI-Driven Malware: Threats, Myths, and Defensesby Candid Wuest	The Spy Who Flashed Me: Exploring and defeating physical access control systemsby Michael Rodger	20 years of cybersecurity automation: has AI restored balance to the force?by Raphaël Marichez (Palo Alto Networks)
11:30 - 12:20	Good Models Gone Bad: Visualizing Data Poisoningby Maria Khodak	Cache Me If You Can: Smuggling Payloads via Browser Caching Systemsby Aurélien Chalot	CLOSED	Présentation (avant-première) Offre Micro-SOCby Orange Cyberdefense Switzerland
12:30 - 13:30	LUNCH
13:30 - 14:20	“A Slice of” Modern Program Analysisby Kyle Martin	The Art of Malware Smuggling (Unmasking SVG-Based Attack Techniques)by Dhiraj Mishra	CLOSED
14:30 - 15:20	Don't let Jia Tan have all the fun: hacking into Fedora and OpenSUSEby Thomas Chauchefoin & Maxime Rinaudo	Malware analysis with R2AIby Axelle Apvrille	CLOSED
15:30 - 16:00	COFFEE
16:00 - 16:50	Your Identity is Mine: Techniques and Insights from OS Identity Providers Researchby Maor Abutbul	Data Sets That Can Make A Difference: Improving Your Hunting and Detection in Entra ID and O365by John Stoner	CLOSED
17:00 - 17:50	Go Parser Footgunsby Vasco Franco	Beyond the Surface: Exploring Attacker Persistence Strategies in Kubernetesby Rory McCune	CLOSED
18:00 - 05:00	CTF (AUDITORIUM A)

View full agenda